www.tiggiano.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:d5:cd:54:43:d1:be:ff:04:44:bd:f6:76:7a:c5:a7:f0:79 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.tiggiano.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d5:cd:54:43:d1:be:ff:04:44:bd:f6:76:7a:c5:a7:f0:79Serial Number (int): 334089931217051897195287321941505464594553
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f2:77:c0:d8:28:62:33:4e:bf:d1:95:76:46:70:72:8a:ec:72:d0:2e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a6:5f:6c:c4:fb:50:a8:6a:aa:d8:1c:29:25:17:7a:5a:e4:f1:76:43
Fingerprint (sha256): 99:03:8f:a3:81:c7:a2:5d:02:1f:e2:da:15:1e:53:17:15:d8:cc:61:e3:7c:34:5f:01:73:06:8b:5c:86:35:ae
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.tiggiano.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.tiggiano.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.tiggiano.org
Other certificates including the domain name tiggiano.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.tiggiano.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgISA9XNVEPRvv8ERL32dnrFp/B5MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDIxNzUzNTFaFw0y MDA1MDIxNzUzNTFaMBsxGTAXBgNVBAMTEHd3dy50aWdnaWFuby5vcmcwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCXbWybE1fKxUavRYEbyWFLkdjkiD63 0WBe4fXsU3C45G00p7nXK8z2Hy1gK4v4V8wZpZgz6eT7h6Ivw18kaT6cjNgCVRSg QXLkIktI7zz/SPEaLWKkCgwwb7QMI0IGVSpx2o0YXFmyN+FNRrZxRxhvNWsCnGHy N8SMQfiSbfEGlFbELvbEDmFXgXHquWyCwt1fC75d5I4wUPK03dJrNrRDVScbiuhx 9D2KRiifyRIN5eiHMrFsxe2fKqGKd9lx9cKHVJY4Hoe7/BvP9xRKu19/aTNyUawT 1qnEsTqQgV3UZfL/GSfEKefsy2cvQOFMDKVci63HXoJDMQxAokfAWY+Z1hL0811s OtiwbaEZArCDXLDKPDGlpUE0aTPacgruF1iM4srBjkRJn5cV+A9zUp5gS4b31z8o 9XWhpW4QiABvo1D0a0anY31olfkTZEDsym0hONCSS8jaRxAgS6F3qm97bDFSonOG Oc7uwzXDSxzjcszx/YvewzaHjmFaMgTmqTMQre2glNCZwgBfYlNzaCAgFT+S3M0J gwt9cPNVFLWYrwIRyBdZGPACxsNb9MDi7U8KRMji+NaKa8jW2Db2lDDybREVkhfB I9Y2z79eIcp6iLHlQPpFw6ICWepo4BUKlGhyZvcMV1NG8lyHaSN29CXcFpa69AxZ CDErWd0mYj59ewIDAQABo4ICZTCCAmEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTy d8DYKGIzTr/RlXZGcHKK7HLQLjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy50aWdnaWFuby5v cmcwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQC BIH1BIHyAPAAdwDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAXAH QHtqAAAEAwBIMEYCIQDtLyynafUmoVpEUlhdbxEymOQR75W9RiW/L5gvHaj1NQIh ALyB0ZPcHCUaZKXiehKfhxLp8LD3zMBTeNbgMFjt/cz1AHUAsh4FzIuizYogTodm +Su5iiUgZ2va+nDnsklTLe+LkF4AAAFwB0B7XQAABAMARjBEAiACduE34Ma3CeID O1hNgibc0R8Hb1q4PFNA89sbKfnJAwIgDYmVq/zKSkKQFWpFdoX7R4PDj5Y9AXns kVvlsq75DDwwDQYJKoZIhvcNAQELBQADggEBAEmNpKgXJWAN/AcKjSLYmXF/+4lK 75d3aU+GS+5aZoahEipaxS9NrXCMvLd/H8ZeprzrGtsJpGVxzui9MtsuMkxyEpVP +hmr20hKeV4Zf5IYZ3Hhj7F5i/LakwixgO9dzOfvkHiiQ87UOWX5qL0IpLahkEpL /A4SXEtup1B9q42CDYKv2yB+O/hDl32ENkKhfq+dMNbXY5mrDU7YW2KV0oTpaLIo /7BRzfSaZ4ic8EB4PxEsbYKbZtKBO03+pOmYlR57LnIFP7itr4o+YC/XzheFPXJl mlt9WR3X9skvHh3ZN3GHl2E1sfxY6pTMN9ec5dAVo3B9Ltt0QF+2rgL/v7A= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAl21smxNXysVGr0WBG8lh S5HY5Ig+t9FgXuH17FNwuORtNKe51yvM9h8tYCuL+FfMGaWYM+nk+4eiL8NfJGk+ nIzYAlUUoEFy5CJLSO88/0jxGi1ipAoMMG+0DCNCBlUqcdqNGFxZsjfhTUa2cUcY bzVrApxh8jfEjEH4km3xBpRWxC72xA5hV4Fx6rlsgsLdXwu+XeSOMFDytN3Saza0 Q1UnG4rocfQ9ikYon8kSDeXohzKxbMXtnyqhinfZcfXCh1SWOB6Hu/wbz/cUSrtf f2kzclGsE9apxLE6kIFd1GXy/xknxCnn7MtnL0DhTAylXIutx16CQzEMQKJHwFmP mdYS9PNdbDrYsG2hGQKwg1ywyjwxpaVBNGkz2nIK7hdYjOLKwY5ESZ+XFfgPc1Ke YEuG99c/KPV1oaVuEIgAb6NQ9GtGp2N9aJX5E2RA7MptITjQkkvI2kcQIEuhd6pv e2wxUqJzhjnO7sM1w0sc43LM8f2L3sM2h45hWjIE5qkzEK3toJTQmcIAX2JTc2gg IBU/ktzNCYMLfXDzVRS1mK8CEcgXWRjwAsbDW/TA4u1PCkTI4vjWimvI1tg29pQw 8m0RFZIXwSPWNs+/XiHKeoix5UD6RcOiAlnqaOAVCpRocmb3DFdTRvJch2kjdvQl 3BaWuvQMWQgxK1ndJmI+fXsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 334089931217051897195287321941505464594553 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-02 17:53:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-02 17:53:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.tiggiano.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 617770050977192742401172756637799868432716937115777936234228310477676374517311699958725873529785268546170492997503020243280193974684892027069718584891201253530247322658319067122704207201121258280578654917431215912449812730101028563971442356439224253465687317952658915894328715443340470727596534725923855057187381928744355621841233780427991619398771933435677012280202545773294231670501809839763384835150871491830932625167248839405918223972061126544269656235884889248137743689498547150615443263855405781908100101499655704071854414037756370662472663790307007549295283468901335226219168343978818267389251421476231077627815498428013296209569076416612065435628015408311953206558640816283310284319331521461846070017129687375700239004342885513211695859397956574272018175444472644988124183910343814336050824967301414066741697975567930425658848702330258220978572283870105693255468903547929063825630169436227849757302884093362576198063606675269256244210175904871031017429517740746981750191327017302839749282692767823534928657263320141928266817059821669250155336534902179020667552738241861109169703629454561935048954454183428198330566684774987985129418361685653871214645007694871700006842544480492527393498410754328577468102403720285222365724027 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f277c0d82862334ebfd195764670728aec72d02e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tiggiano.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000017007407b6a0000040300483046022100ed2f2ca769f526a15a4452585d6f113298e411ef95bd4625bf2f982f1da8f535022100bc81d193dc1c251a64a5e27a129f8712e9f0b0f7ccc05378d6e03058edfdccf5007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000017007407b5d000004030046304402200276e137e0c6b709e2033b584d8226dcd11f076f5ab83c5340f3db1b29f9c90302200d8995abfcca4a4290156a457685fb4783c38f963d0179ec915be5b2aef90c3c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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