maurizio.me
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:aa:8b:3f:77:b8:b5:a8:de:84:9c:b7:9a:fa:1b:6e:0c:08 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=maurizio.me
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:aa:8b:3f:77:b8:b5:a8:de:84:9c:b7:9a:fa:1b:6e:0c:08Serial Number (int): 319369952406197415403420007735502362774536
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 0c:ee:3b:59:d6:2a:80:7d:4e:20:82:53:c3:f7:bd:6b:f6:08:4c:43
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0c:49:91:3b:a3:c8:a2:29:e6:8a:a3:ad:3d:32:73:c9:ca:4d:ea:e2
Fingerprint (sha256): 9d:56:6d:9d:92:a0:67:0e:4f:92:d6:fb:18:08:1a:11:02:8b:51:a4:03:8e:70:bb:c5:c7:61:3e:66:81:ef:e4
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate maurizio.me
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for maurizio.me
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
maurizio.me
Other certificates including the domain name maurizio.me
(limited to 100 certificates)
Certificate
The complete raw certificate details for maurizio.me in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTDCCBTSgAwIBAgISA6qLP3e4tajehJy3mvobbgwIMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjcxNjQ2NTVaFw0x OTA4MjUxNjQ2NTVaMBYxFDASBgNVBAMTC21hdXJpemlvLm1lMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAmw8j906IxcI3SbwGRw4rqBOLJMxNF36/glC9 hi6JpBo+9wjqONEb8hNWs0k6z4YGoefZa6/wYsRnrdFdZA2x/rClQ7KuHfDE50oM fYRufqAQCCVVS/KmFdRUuJseN/7LgX3gGXISLTBaRTgq4ifXce26CnOdSrZ/GXvg YteZT05L+owcFHvR3mPAX7CdhiGxyYbvn/1u23sSE+bkLWdBufveKTnuRnQPVj7d YPlqSJ4IR7pdsEUp0IrBxjfH5cW+hCb4teNB6c5SlSFkoQUATrXLG4fzlZuoZsnB /qccumyhPyC6ZqpXr4lPekHA+TNlid+CurXRH3Aq3QFYWDuifDB+4NrWfZMe+sUM MracKSZsSRJ8I9O3ph02Is0cMAB6HYn1BaiHS21NlFSPpPdgK54kodBlfuXKpYZe ADn3AeVLy4OaAZFqt+3W7Yqz0D+LC4wYRjR6NcCHW995Ppu2cbrPHE3fqZuUyXb0 SJgTL5f12tv9fOs4OpT/3ps2q7ozWURxNW+gu3X/av5MNhFKODSsQqRqnp2pyN58 AhMwrPJCGXUPT53vDh94sB0rh+E3uEDAvi36MQui8526XRpE2krgJfmumIUJDine cTJUxP9+kplqP6CTJJF2AHRiKI6/t/HeJXNnTKtg24L0dN5KVX7tB/PjA0btSUg3 Tb2E+D0CAwEAAaOCAl4wggJaMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUDO47WdYq gH1OIIJTw/e9a/YITEMwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAWBgNVHREEDzANggttYXVyaXppby5tZTBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQIGCisGAQQB1nkCBAIEgfMEgfAA7gB1 AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABavpnAZwAAAQDAEYw RAIgMZ6LCY3qszPAXvGyG0DAfb23DQFj2pEG3v6ZmMSvVVQCIFtlISkL6hAi+XT0 tPUTLU2bh8H+dfz82zCezxs05ryFAHUAY/Lbzeg7zCzPC3KEJ1drM6SNYXePvXWm OLHHaFRL2I0AAAFq+mcDAwAABAMARjBEAiAg4iBeta4M6fAaVY1wGD14fQ5tkcme +5qkXdBzRdiChQIgWoC1l96660O0Z1lg171UXmwMxv/oyQ1A2L8rotjP45QwDQYJ KoZIhvcNAQELBQADggEBAJh8v5CxE/+h2o28Ytdli5vytpywLbsbl2bVN9uBzI67 2L69glJ6EZPw1CT9rU7wjpNtNmE+/ysWeZJvTdjSvtS1/ROWqBVVHqqxQQ8ed4KI 6zbPQp8xO2/4vpjjCYmo4yrvgL8f3Y2oXtuTglNv6wtR7EeSkoMvpWMtrOyU8JnG O3PEmF1+UcVLsxH0j4fq6W22kagBoqc+qHiZPo0xEAgT94wEMuac6RP+FtyJQTgy yI8EiLaTUqnYYhHGb36uO3oJtStDkSGYGh+5EmLxIsl8HVuo2yXjVY51LEfZsIp3 ZnyQ/9M4X6ylCIyNbMSwfM0Jj0hpRd/Ze61zZDUU+Fg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAmw8j906IxcI3SbwGRw4r qBOLJMxNF36/glC9hi6JpBo+9wjqONEb8hNWs0k6z4YGoefZa6/wYsRnrdFdZA2x /rClQ7KuHfDE50oMfYRufqAQCCVVS/KmFdRUuJseN/7LgX3gGXISLTBaRTgq4ifX ce26CnOdSrZ/GXvgYteZT05L+owcFHvR3mPAX7CdhiGxyYbvn/1u23sSE+bkLWdB ufveKTnuRnQPVj7dYPlqSJ4IR7pdsEUp0IrBxjfH5cW+hCb4teNB6c5SlSFkoQUA TrXLG4fzlZuoZsnB/qccumyhPyC6ZqpXr4lPekHA+TNlid+CurXRH3Aq3QFYWDui fDB+4NrWfZMe+sUMMracKSZsSRJ8I9O3ph02Is0cMAB6HYn1BaiHS21NlFSPpPdg K54kodBlfuXKpYZeADn3AeVLy4OaAZFqt+3W7Yqz0D+LC4wYRjR6NcCHW995Ppu2 cbrPHE3fqZuUyXb0SJgTL5f12tv9fOs4OpT/3ps2q7ozWURxNW+gu3X/av5MNhFK ODSsQqRqnp2pyN58AhMwrPJCGXUPT53vDh94sB0rh+E3uEDAvi36MQui8526XRpE 2krgJfmumIUJDinecTJUxP9+kplqP6CTJJF2AHRiKI6/t/HeJXNnTKtg24L0dN5K VX7tB/PjA0btSUg3Tb2E+D0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 319369952406197415403420007735502362774536 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-27 16:46:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-25 16:46:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'maurizio.me' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 632586111089253883389277808411547476265692491850337492827619491036850730676500096731094896004868706895725457339046476031085477397850553576210506285007801459471429527203338420758884770414117450322622610052086331934717475415033112798340258241638656521445171463552396051490584741034718324997488913065853179951139970567158948897254191664213179943183101929093742125474826239483669110408969098079957425038627389023668166004310533349723614234549798131575415323870187509052619470997703987626137221778192136100640998033470608284563665255090900870440315833782924092978482954697898392996283653582009960553827426698718930343242036496795798173911176371260760673364984194876745178394122787365545761568261293707156669096234965987136020136184176151826551671807317407605540000005275141096865134873274177193389239196929845794752833752262627057310359199562043375938858513450762798120622101581023948892515678010546359374127830389425173383813788511999455773161034444456536021825597920533784385327280661299033427566609581987058433878171038268734188020647505595600499506728221832744015504476115148614380099512506814410847780043423996736475323751208404605296698921471189857587827127041374192048721522608181768371795393062303203514971988219745867336849356861 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0cee3b59d62a807d4e208253c3f7bd6bf6084c43 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maurizio.me' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016afa67019c00000403004630440220319e8b098deab333c05ef1b21b40c07dbdb70d0163da9106defe9998c4af555402205b6521290bea1022f974f4b4f5132d4d9b87c1fe75fcfcdb309ecf1b34e6bc8500750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016afa6703030000040300463044022020e2205eb5ae0ce9f01a558d70183d787d0e6d91c99efb9aa45dd07345d8828502205a80b597debaeb43b4675960d7bd545e6c0cc6ffe8c90d40d8bf2ba2d8cfe394 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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