roncoferraro.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:b5:23:15:56:1f:7b:e1:fa:ac:fa:fc:32:ad:60:c8:49:ba was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=roncoferraro.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:b5:23:15:56:1f:7b:e1:fa:ac:fa:fc:32:ad:60:c8:49:baSerial Number (int): 322974599972838741913960170584174882212282
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 99:2b:8f:02:bc:a0:8a:f0:f1:d0:10:84:a6:84:25:a2:7c:50:9f:c2
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ca:a6:74:02:ce:d9:54:88:08:97:81:de:44:5e:75:20:d4:e0:e2:92
Fingerprint (sha256): a7:86:ad:02:4b:c3:f3:46:64:ae:67:a2:ca:9c:22:3a:33:1c:ac:4d:af:49:ff:2c:4e:bb:f7:49:fa:d8:a9:aa
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate roncoferraro.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for roncoferraro.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
roncoferraro.com
Other certificates including the domain name roncoferraro.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for roncoferraro.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgISA7UjFVYfe+H6rPr8Mq1gyEm6MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMTYxNjM4NTRaFw0y MDA1MTYxNjM4NTRaMBsxGTAXBgNVBAMTEHJvbmNvZmVycmFyby5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCsybAKCNZ/jJRSKud1Z6AsRE11l8ta 1HFRNW1alUjTEKV2xUM2DeUfyxdL2WdjaS2/4PO9AeeuDIACFiWuZ1I3l7RTwny7 tijgGyMgOuO+Vb3iYq1I6EYp+WXdtb+fLrr08iUjrbBWjbzwwZ2yA8jc/vlp1MFu JXOPA9BtF65u5VyL+xQfXA7rEt9TzOrgqLk1PboJb7MyxnxCB+pcJvWgKdTCH1ys xdB8w6t5LpaS0/6fn/p6veRCCaUGzgfsKZ65OLSk6KLo4N33v4qa5QFIU/3p7iHW Are8wvySBLaUKpTxIgLoM0EcW9JkG9XMJBK76SKfzE4yTEKZvUEoYKaiVyCfWe9a FFmFGpecbkgehDVc6YBlQ9jgyXiFMzyzlPQDvfUeWlgg8NJqjITix+vLgDxVnQZO v7WPcVSWp6aVJ64BBC8a7cwvR35dwwokMsf9nFsxuowt7qUJd5lwAvuiMaJXwQzO 7IiFrHr1tP1qZnY9uZw2MlNIeFWrWnEuWPijWfQMYVzyX4YqTrseSw0iee6hXG8G YXnQZvE4xapu8ommHCm2DViV230yHtjfktmqXlBl+Q6j7yanhdANWDFkBEaVrEs6 MvaAeJgefc6wfBTjScWiw5kB2Tise63RguWgFRwdtoHM0GzBnmoVIFllrZlMwlcw iS6GkZDoA33nKwIDAQABo4ICZTCCAmEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSZ K48CvKCK8PHQEISmhCWifFCfwjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHJvbmNvZmVycmFyby5j b20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQC BIH1BIHyAPAAdgCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAXBP FOWBAAAEAwBHMEUCIA0pmQ6dIps73ib/lro1Cn2BouxkbyvE/ZR1+brFg9akAiEA vgSUGP2pXk94STWyh80TnipBQ4P6H6j1dbrb++AfEeoAdgBvU3asMfAxGdiZAKRR Ff93FRwR2QLBACkGjbIImjfZEwAAAXBPFOW3AAAEAwBHMEUCIAatHh9UYx7RumPT naDh3vbp7iIHJunaUzB5hJYTmB5nAiEA7nTSkWh9RDJ/a+tGI5onD1fNoKEScv11 FEDusyYSRFMwDQYJKoZIhvcNAQELBQADggEBAAhQzlhs2nZctOGqRrRcI0OYzzkI SUPmgWeJYjg48neAc1Sx8vpwz6+Br4kIQM9UQxlwsYR7IOV3ClRPOXWN0jOHsZrO N/K2uWuGNy7z6PHfQsywIikUt5evTesooZCwj//aFx81uJfoIZV9kao+doCF6BKu AP4NAUivW6Sw45sq0B7r9dBtlbTryH6mBDS2g4FPmNl0lQrxLnRIU5IcwaL7rsk6 zvftA4+jRyTHC1/MFKV0FjUPcM1DISd5WzZ3XFqifCKFcTP3EXSCmAabvgIIRQG9 do0TrTfnYrr2ysiMNQc16CjS+AmJZE7ANFMoFajMsr1tbedlBifK6kLE7ns= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArMmwCgjWf4yUUirndWeg LERNdZfLWtRxUTVtWpVI0xCldsVDNg3lH8sXS9lnY2ktv+DzvQHnrgyAAhYlrmdS N5e0U8J8u7Yo4BsjIDrjvlW94mKtSOhGKfll3bW/ny669PIlI62wVo288MGdsgPI 3P75adTBbiVzjwPQbReubuVci/sUH1wO6xLfU8zq4Ki5NT26CW+zMsZ8QgfqXCb1 oCnUwh9crMXQfMOreS6WktP+n5/6er3kQgmlBs4H7CmeuTi0pOii6ODd97+KmuUB SFP96e4h1gK3vML8kgS2lCqU8SIC6DNBHFvSZBvVzCQSu+kin8xOMkxCmb1BKGCm olcgn1nvWhRZhRqXnG5IHoQ1XOmAZUPY4Ml4hTM8s5T0A731HlpYIPDSaoyE4sfr y4A8VZ0GTr+1j3FUlqemlSeuAQQvGu3ML0d+XcMKJDLH/ZxbMbqMLe6lCXeZcAL7 ojGiV8EMzuyIhax69bT9amZ2PbmcNjJTSHhVq1pxLlj4o1n0DGFc8l+GKk67HksN InnuoVxvBmF50GbxOMWqbvKJphwptg1Yldt9Mh7Y35LZql5QZfkOo+8mp4XQDVgx ZARGlaxLOjL2gHiYHn3OsHwU40nFosOZAdk4rHut0YLloBUcHbaBzNBswZ5qFSBZ Za2ZTMJXMIkuhpGQ6AN95ysCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 322974599972838741913960170584174882212282 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-16 16:38:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-16 16:38:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'roncoferraro.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 704912896252673413485044526530268493670579540247608117238159508250569748567624768892806430303011486401589307197221634063466608310824589301610135480438253411549250445874282492817994762518280453647683959115564773669732893031212994288494596457975347691474951297756251214847231998173826152726942918405376071198577810803973894202120948857688020157492455112822529433929632183851415000442760849465713324925225273719991015245757372796582925777766523077674073005562400783632994477289096988832218799661805252658782351314519299382158538586024325503890115727300095458033684504720506703989670574117324830080924731516688486771905592357275076980339728004948838152765786011912422868369600624913437539376221947171486177528096189874039663827074298040459496149786252628654591346696841233329301242456227915013070834052160362865743801379720912232522065423422300797249301896556084389860046028744548743036979522556990512327887364139493917901589628026493117735366508925130773278050627649336060309339386475622415338185623481635261235441320742948496505976180691704067267529340140210287792590268193283196963419804134877173782395676396926088785767701766141295461549053843284815799651895844514001594579328311815326235375779799259040428015698517201699556881721131 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 992b8f02bca08af0f1d01084a68425a27c509fc2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roncoferraro.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001704f14e581000004030047304502200d29990e9d229b3bde26ff96ba350a7d81a2ec646f2bc4fd9475f9bac583d6a4022100be049418fda95e4f784935b287cd139e2a414383fa1fa8f575badbfbe01f11ea0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001704f14e5b70000040300473045022006ad1e1f54631ed1ba63d39da0e1def6e9ee220726e9da533079849613981e67022100ee74d291687d44327f6beb46239a270f57cda0a11272fd751440eeb326124453 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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