www.palmarosa.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:f2:6e:86:88:20:e5:37:37:89:24:3b:d2:90:d2:a8:f2:82 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.palmarosa.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f2:6e:86:88:20:e5:37:37:89:24:3b:d2:90:d2:a8:f2:82Serial Number (int): 343832104198477178628442770062244150047362
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 73:9e:9b:f6:dd:96:1c:97:b7:48:8b:8b:17:6b:af:c1:f1:68:d6:0d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 76:b1:d6:ca:e9:17:2d:e2:f2:ca:ad:46:90:27:e0:8a:a1:0b:eb:b1
Fingerprint (sha256): ad:67:9c:f0:1f:a8:7b:18:18:f1:81:8a:48:31:76:0d:81:d5:d5:ee:89:63:29:8d:f9:99:62:dd:d8:09:74:c0
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.palmarosa.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.palmarosa.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.palmarosa.com
Other certificates including the domain name palmarosa.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.palmarosa.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgISA/Juhogg5Tc3iSQ70pDSqPKCMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMTUwMzQyNTNaFw0y MDA1MTUwMzQyNTNaMBwxGjAYBgNVBAMTEXd3dy5wYWxtYXJvc2EuY29tMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvgiPDlYsWHxWGF+p9RRlRFRvkcFo paTO3BvFNqFJGgfc6XVKwnvmtfNHIvzJsnNPFVJr+RfZbOzuhzt3JbA3sswEy6bH 6Q7h81UtAINbbD+owz6W7iLV5tUzEYdW5SrBozcLsSpu9bd/gBjguK/4wrUEfc7J KxhhU99Yi5AD6CRXfifWwa/7IQqx0bOFTE0vhi3qc7fHdvPqdYrrd9lq2meAYVU2 b7aNxODfbxUelT7QVdRhGffFvEP/cAe6n+JNf+Zis5/KsQ3PBkN2yPU6PxC/COaL lvkgU4c5KkPd43EswRYL6q9+07oM0QklB4ujVNkOVrMlQm6iYUoC9aSTJuVkWwki FxQLV/YS1Oxcw1XyN4AN49rtqRN16wKhkhrhh3ugU6Gf+FY52Cs6pfrgHwXH4VUB IIYb8UDt4fwlRmotgjCrZMmTIg3JqjKlf1Cyu2ZZJtMDpJ9ZXdOm/o+6Roi7/Ndi wfCYeEdAMernrAb0ngVlC3VtxbkdlDnku7X8yxsoQJqdHZpf0rPJ0WoqkC/ORO/J bd4tYoI7xkXZXYOf9dowdz/layFJVbakYce9t6eXa05F5yKM2orPlaO2prjTI3Y1 QqGWQMRnDeP2fs3DYpHsWgBdbj6GQPUii2b8l+Gv2JASY1LKH9ZB40xySrpmYTC/ dI8z3RNwMRLXzT8CAwEAAaOCAmYwggJiMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU c56b9t2WHJe3SIuLF2uvwfFo1g0wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl 7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5p bnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p bnQteDMubGV0c2VuY3J5cHQub3JnLzAcBgNVHREEFTATghF3d3cucGFsbWFyb3Nh LmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsG AQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkC BAIEgfUEgfIA8AB2APCVpFnyANGCQBAtL5OIjq1L/h1H45nh0DSmsKiqjrJzAAAB cEcoFI8AAAQDAEcwRQIgLFWkd+JXxez0UpShAJzXH4F7JVJPZMK+5dCbYeHNbTYC IQD3pYZ5c/qFdym5t2bnf88+wJIAfcnpd6S/v1sEumflVgB2AAe3XBvlfWj/8bDG HSMVx7rmV3xXlLdq7rxhOhpp06IcAAABcEcoFKsAAAQDAEcwRQIhAKqlv8yhaizI XMcVZJmpDEIKdyIdK3nvm0aPUe9E/WWxAiBG0Hx2v0uYVP82ZsGJXx9EfMOOkdYi kGK3xVdr8ImN1jANBgkqhkiG9w0BAQsFAAOCAQEAGAU2ymJtU7ypdfgIroyTIc4g SqvYRG2VVD52zfiXCGOzmo9lS/D+OmGahLrOvt+rkxF1Bm2l/4VPqXxAZtGpRaQc iSp4DoxUKHRT2hJe8cbcbyWKozOasGIq1YwevXVs4pfbL5uekA/KCfC/muhfzC7C x1ZnDlqNuhIpRYg0D617h2F38tU7FGFyI79dbfdO8tQkCZsjWMPakWNtx9tojy8m YS9lp0C0Hsj7NP4eGqEj+681GuHqpv5OI45geVntoveZ2nmM1tY7PIHmoEIXFp6C XSDlxeJfsY7aRk6U0D0PSh5NcECX98qR0kfktrM6YZ1m7dMuuyYIVK2mAuQEmQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvgiPDlYsWHxWGF+p9RRl RFRvkcFopaTO3BvFNqFJGgfc6XVKwnvmtfNHIvzJsnNPFVJr+RfZbOzuhzt3JbA3 sswEy6bH6Q7h81UtAINbbD+owz6W7iLV5tUzEYdW5SrBozcLsSpu9bd/gBjguK/4 wrUEfc7JKxhhU99Yi5AD6CRXfifWwa/7IQqx0bOFTE0vhi3qc7fHdvPqdYrrd9lq 2meAYVU2b7aNxODfbxUelT7QVdRhGffFvEP/cAe6n+JNf+Zis5/KsQ3PBkN2yPU6 PxC/COaLlvkgU4c5KkPd43EswRYL6q9+07oM0QklB4ujVNkOVrMlQm6iYUoC9aST JuVkWwkiFxQLV/YS1Oxcw1XyN4AN49rtqRN16wKhkhrhh3ugU6Gf+FY52Cs6pfrg HwXH4VUBIIYb8UDt4fwlRmotgjCrZMmTIg3JqjKlf1Cyu2ZZJtMDpJ9ZXdOm/o+6 Roi7/NdiwfCYeEdAMernrAb0ngVlC3VtxbkdlDnku7X8yxsoQJqdHZpf0rPJ0Woq kC/ORO/Jbd4tYoI7xkXZXYOf9dowdz/layFJVbakYce9t6eXa05F5yKM2orPlaO2 prjTI3Y1QqGWQMRnDeP2fs3DYpHsWgBdbj6GQPUii2b8l+Gv2JASY1LKH9ZB40xy SrpmYTC/dI8z3RNwMRLXzT8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 343832104198477178628442770062244150047362 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-15 03:42:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-15 03:42:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.palmarosa.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 775268767098367693601915564161955345432024549727015446167361545276203189784418749754782013629072550465380736338377226830117133113265056546940919102451028668350309032642600206475868420626092625484342797006432887346555392442306760663436050005025929935121212824154761467494772869343115521629619564701087988070384280701400264208337259850597585066480295692439400407747195889004082557593231162590971692388493522566718717107529557638292137376837664403109995232445219069507175529825403555759822140900683978778899451564168300821801530992880184685293854560199308958854205709101604459738885077123414328652479969781008257942027077739873554502082640670068917419884944906857062691750466189353727966067329977251575747660452091086522501845785404890783752738925073638979634067036962774990469288996981215949641918848810576544818985485665131762339188090001751339288817320544923238477927348201349744726709319424161755014733086399752290823821528353356847880200806967641912488757637811998992410966261936415474065927905626074372262240893726306672544507054071988518568438091316458015428746760859387676279055420264120380419899781222870131535569571789239686709446590831276462370444223589909695112097233601924089958135308517063075558019680571155155487322262847 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 739e9bf6dd961c97b7488b8b176bafc1f168d60d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.palmarosa.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb273000001704728148f000004030047304502202c55a477e257c5ecf45294a1009cd71f817b25524f64c2bee5d09b61e1cd6d36022100f7a5867973fa857729b9b766e77fcf3ec092007dc9e977a4bfbf5b04ba67e55600760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c00000170472814ab0000040300473045022100aaa5bfcca16a2cc85cc7156499a90c420a77221d2b79ef9b468f51ef44fd65b1022046d07c76bf4b9854ff3666c1895f1f447cc38e91d6229062b7c5576bf0898dd6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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