biondina.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:e2:39:76:3f:79:cd:1c:7a:4a:cc:3d:0e:41:f7:d8:ee:79 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=biondina.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e2:39:76:3f:79:cd:1c:7a:4a:cc:3d:0e:41:f7:d8:ee:79Serial Number (int): 338317052693643771545736076800766584090233
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f7:1d:b6:43:ac:00:5a:f7:66:69:8d:99:9f:12:18:e6:01:7c:23:6e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 5a:19:04:dd:cb:0c:8c:c2:23:88:94:59:33:3e:f1:10:58:c4:e0:49
Fingerprint (sha256): ac:57:9f:e2:83:68:39:bf:0b:c4:f4:b7:81:ac:5a:0f:58:ec:b6:41:60:85:d0:f3:6a:59:48:7e:78:d5:6b:09
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate biondina.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for biondina.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
biondina.org
Other certificates including the domain name biondina.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for biondina.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISA+I5dj95zRx6Ssw9DkH32O55MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMDIxMzQ5MzVaFw0y MDAzMDExMzQ5MzVaMBcxFTATBgNVBAMTDGJpb25kaW5hLm9yZzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAMbuaE9xteTDj8rN7tQ5q1ooNye3frSQLy4G J5kKJU4/a6ABIO6G45q/m9Xz5KfCh9xh/y4jDd9C2WRB9NWdPkc+PSRUIDD+WXfj X3Esby8fwLGjRNhFefNhctGexMPPYiLIGM5WG3xJW//PuHNc3hbr79LCZ6j96mHT PupWVqeZqr8Rix1CenE/PbWtsf73RFTszhN3HFL+4azUB4cw+cvD5y5UOdeuQCyA Z6PYjzVgzLy/GRXcc5kry0cOZhY/vDFF8/Qv9GquwV1EqZ+mpeVuJnqe/AcCf7mk rUK+zApNqb+2qC1DJQJIczqNXcnwVCvhoF9POHAHo6EBfPXrxr6k15rFhFZI4jTL 9lbzeMoC98t4wwFCZB9OYZS+hNbpKpTVu1dX2I0AtUEWAj8RsQWtmcUVZi4ZojkH qkJNm12b1SFCC1DsG5p0Jw6nGdgtbP51zM+t2NK73h4Sm6OlMIpin7DoegYkCOzL eHCdbDo3ITFXx924lSlaSHK3qwJbrDuU6iCUMGSV2zC73eqFn490ggTIRgIudJRA aXtqFbG4wu67C2PTAUz2hxHcyz+givBRhYOzuYD7ckKL8w0m6x5TR6vliWIUV+eY Fuk+Z+m+56TICD1MmmvE/uGOr8+pbNfne4c6pyWRqZDY4/x82iUp/9ikSbfkdqnb TdgMSParAgMBAAGjggJhMIICXTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFPcdtkOs AFr3ZmmNmZ8SGOYBfCNuMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMYmlvbmRpbmEub3JnMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHYA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFuxxaRXQAABAMA RzBFAiAjCnk46nbYEW7QQUVeEd/LMWsphzS+Pvihp14185/4ywIhAJPNQki/ecQk +C2qCY6cJvKYSs3WohuRV0J4ol9P5RSxAHYAsh4FzIuizYogTodm+Su5iiUgZ2va +nDnsklTLe+LkF4AAAFuxxaRUgAABAMARzBFAiBXx8euewlcAQSg+i5WBXjPYc33 wq5820amagfdQ+bCBgIhAPURHqVc7ebMUOk23wwRuKCpCJsGf9Sk/Sur3xj93QbK MA0GCSqGSIb3DQEBCwUAA4IBAQCQgSX51fZi93xi2huhniFQsc5IgbYI7UDgLVUF gab9N7C9gV+38FqgdAkP5OMVPt0dKbwRJsObJ26TQTNLr2ie3sVgfFjAtDervS+e D+lUu36E5CM72p9ztAgQZIjXOL8p8DxMxjfO6+sUhCPUdtghXbwj+WVtZDhRIO2l Za2kYOWST5XcOs7LbZ4adLRUHXgwUycqzmGYG6munOEEvzjpy3DJZK8L/Y3Gn8OD QcnLrme1OdtRsHn2X1URGY+VktEZguSG1wcONmm8YJ7I4TTCG1gjWcLy9uyA8Vcp 6DVQr0daCYEIN0EXYZyNiw2BPO42OG18eyNfXVwxGWKxXJSt -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxu5oT3G15MOPys3u1Dmr Wig3J7d+tJAvLgYnmQolTj9roAEg7objmr+b1fPkp8KH3GH/LiMN30LZZEH01Z0+ Rz49JFQgMP5Zd+NfcSxvLx/AsaNE2EV582Fy0Z7Ew89iIsgYzlYbfElb/8+4c1ze Fuvv0sJnqP3qYdM+6lZWp5mqvxGLHUJ6cT89ta2x/vdEVOzOE3ccUv7hrNQHhzD5 y8PnLlQ5165ALIBno9iPNWDMvL8ZFdxzmSvLRw5mFj+8MUXz9C/0aq7BXUSpn6al 5W4mep78BwJ/uaStQr7MCk2pv7aoLUMlAkhzOo1dyfBUK+GgX084cAejoQF89evG vqTXmsWEVkjiNMv2VvN4ygL3y3jDAUJkH05hlL6E1ukqlNW7V1fYjQC1QRYCPxGx Ba2ZxRVmLhmiOQeqQk2bXZvVIUILUOwbmnQnDqcZ2C1s/nXMz63Y0rveHhKbo6Uw imKfsOh6BiQI7Mt4cJ1sOjchMVfH3biVKVpIcrerAlusO5TqIJQwZJXbMLvd6oWf j3SCBMhGAi50lEBpe2oVsbjC7rsLY9MBTPaHEdzLP6CK8FGFg7O5gPtyQovzDSbr HlNHq+WJYhRX55gW6T5n6b7npMgIPUyaa8T+4Y6vz6ls1+d7hzqnJZGpkNjj/Hza JSn/2KRJt+R2qdtN2AxI9qsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 338317052693643771545736076800766584090233 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-02 13:49:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-01 13:49:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'biondina.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 811568812925117018949718132970201362253046065381426036792017992326991776521850879773642211858681279008937440049890452520079930115733505678083215210431809672530254271270960097630944340673979834305373383455564468147023189890841104999543193299883952258129321211118956510235861620434152038048654674337888743853957104461610096182605601546904195848213152324297723100538185576683437835080272156621377269599516676370978663743614611156807398254983090481660044111203434882148413723705264321873040221772116735765293078223282041016369350801934438109340245935345002688228620183311037085407213397804591322820008471461747030648752661130100755181626498640506736811991750244977902719053904257493381720327114819639117943403301287318048897455796279938057954725628825570659725626685003540739900274410307001939870573697571801365682964931882910796632397918511167042586080273641989169430386985519267016630050403669013203011522404375485593667381878950209331002577973301815215834800180464693435014559904215480454998045858859326565310015280269405356150756165997591983828994043656965741543253611382427884835941337912882603414438222771554781866790828749054076724190473868519720856539859185126581212419244129663110918062331566938208942239798619280994315507660459 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f71db643ac005af766698d999f1218e6017c236e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'biondina.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016ec716915d00000403004730450220230a7938ea76d8116ed041455e11dfcb316b298734be3ef8a1a75e35f39ff8cb02210093cd4248bf79c424f82daa098e9c26f2984acdd6a21b91574278a25f4fe514b1007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016ec71691520000040300473045022057c7c7ae7b095c0104a0fa2e560578cf61cdf7c2ae7cdb46a66a07dd43e6c206022100f5111ea55cede6cc50e936df0c11b8a0a9089b067fd4a4fd2babdf18fddd06ca . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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