www.nathali.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:b5:77:60:60:38:53:67:98:fb:da:0d:8c:b0:3c:a7:1c:9d was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.nathali.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:b5:77:60:60:38:53:67:98:fb:da:0d:8c:b0:3c:a7:1c:9d
Serial Number (int): 323086644751541337708049700500303430229149
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 9b:5f:0d:57:21:0c:ea:38:b1:6e:49:3f:ec:61:0e:32:de:86:f9:0e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 8e:ec:86:43:23:a2:b1:12:6e:e5:4c:32:5d:f6:6a:12:3b:c0:79:c0
Fingerprint (sha256): a7:1f:89:6f:15:99:00:b7:4c:a3:4a:77:43:d8:1e:98:b3:66:43:19:dd:92:6f:40:3e:09:f1:92:cb:e9:ec:b7

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.nathali.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.nathali.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.nathali.com

Other certificates including the domain name nathali.com

(limited to 100 certificates)
palmspringstemcellclinic.com
nathali.com
nathali.com
www.nathali.com
nathali.com
www.krummrich.com
peschieraborromeo.org
nathali.com
ministry1.com
nathali.com
www.nathali.com
www.nathali.com
www.nathali.com
www.nathali.com
nathali.com
nathali.com

Certificate

The complete raw certificate details for www.nathali.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 323086644751541337708049700500303430229149
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-26 08:53:24 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-24 08:53:24 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.nathali.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 693284572474604874147792705504311047083219952062594483887524158490973622319777601167157855327873607906994327064465874236468784089142637480617192206530862928234059706094012163756222382184669623388756314205673561287219443172951405310609716568971838679330312147768311336107389277976739764881640186342178569303519763483413054114850218870523899048412060062784595026762181589065281662203058968144781791631391383778302143344799477244094036527889094573410181325502970583593623402985594596934325836443134615481686989626761075313829887519867511073461604934771583326997023788026023346097604328620945573772541620986957198217917038638496267312609562661716713990296648692691640248514611968946524361304441267412537294364133770636024356598688385730340935385402254994765001352624428117737760397998347223008347651700570682137249489236170702027827115745002331570451683014678199063388040015817292124949734881643931949139912250963194809791749874139836855945997384912479609285501263701460181327561141202638477637283751737734470008104525795823541906832202559437335844157299043973209302224952524303645038022750440406567873975731531182809926283485895960556270493247733464642526017857337529889877800352505211538731991351973550674995537427871996180762168876747
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							9b5f0d57210cea38b16e493fec610e32de86f90e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nathali.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c2db30ac00000040300483046022100b125eb5fa0b927dd349f3c936ac75a04d08ca83ec7fc8a8209d4e556abc181cf022100aa07eadb1d803991b1df9fcdaa6247144373afd63ae4b7b8311dab68ee11d5eb007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016c2db30ab3000004030047304502201086156c23c54e63cd7a7c82481002353f40fa6c584caf9ebd841bcff96a41a5022100dfe7a06f5849b5e4760baeb45a064fa80624190c661064022a28e34322a2d591
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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