www.igani.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:b8:15:97:5e:ea:48:4f:dd:28:29:d8:cf:bc:33:03:4f:62 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.igani.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:b8:15:97:5e:ea:48:4f:dd:28:29:d8:cf:bc:33:03:4f:62Serial Number (int): 323977513058578811451261153442336543559522
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 71:02:23:be:ca:19:4f:4c:3d:4c:e4:71:db:8b:88:06:59:d3:2e:aa
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 04:67:74:b0:68:7a:5b:c7:c4:5f:38:9f:50:44:8b:2d:67:b5:ad:54
Fingerprint (sha256): ad:ee:82:61:1e:59:38:77:d8:40:ff:df:c1:99:c5:b8:6b:d9:cb:8f:bb:79:01:be:27:cb:c7:14:69:d4:99:9e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.igani.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.igani.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.igani.com
Other certificates including the domain name igani.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.igani.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISA7gVl17qSE/dKCnYz7wzA09iMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MTcxMzM5MzZaFw0x OTEwMTUxMzM5MzZaMBgxFjAUBgNVBAMTDXd3dy5pZ2FuaS5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQCk+VUb9UyqMwIpH8Qbsil5gTjN/vw1qcTI 8jenL6RbL9DdcrCaXVbe0ZigJ3q96+pcP5atshDXIxnzy1GP7uhHZ5u0bRcZi/JV chLK3LSRjKbEXb9jHd5t3OOX/EByio4T036x2+ldmcKnWCZBoCTmwvrI5yE5h6xO VlAPll5wrKjO3TWURAuxs3mpjWR1O8BzviCFw1K224H4jNhGMLXkKkjVQTVeAtdW RaE+piH59Koukwwkri3URZAh/UE1uclLolbj4YUQ4VQ2+Ie4DOY7DOnqL4FPOKJ0 86gawhpIw2uQx4X8sAplRJl8HjCMmqr6oLhPjNWXFQyu/Jc2fU11an5nhX2G0pSh uvmO+8cGOl0MkCcDJ3HRufhJhvZd6x83wo8NPQ9zWvxexqA6kSQ/FFntqdYeJ80X hFH99tMsylgJOwRgZSpLc9vMhspXvjQAWiEBcg8ga6q7f/6EW024huWA0jfgFRHg 9+vnXQK/YsMZ2Xt8e2yoGgM5qCVWxQRxmLuFlWrhOSSboKga5Gh+3nQyCmZtQ8/z vK+kiLGT6JBeUfOEJzJkKs947P6F8bhVpx3TAOpsBsIx6CzFHJiqLelL6f+YfhWf duHgj9tKzJABaMA8HhC7w5XpoVZ4UniS5voE3Eh6cmXOUFAX7GVrG+EsjW0+D8gC 7e/fgd5AMQIDAQABo4ICYjCCAl4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRxAiO+ yhlPTD1M5HHbi4gGWdMuqjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy5pZ2FuaS5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdgB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWwAX9ayAAAE AwBHMEUCIQCqIJgNWAMxGIAx6ZSoTaFgMTn8SyTccBraS+Pg62nqwQIgMzOQEtaW Wo3HRv/tqxLlOsiFSPwuh/LQbRt1SaaB9YAAdgBj8tvN6DvMLM8LcoQnV2szpI1h d4+9daY4scdoVEvYjQAAAWwAX9agAAAEAwBHMEUCIQDxEfZ+b4ua/+YRN9m9l6S8 X1clwR9XNfW7HQNlpzrYHQIgbVaAime1c0P7q4fydqEXhN6uf1P2NI5EANtMGYZM unswDQYJKoZIhvcNAQELBQADggEBAGDIx49uJJRfrz6wW8AOvUw896hlP/Foj3Ul 82KJ42LrF15HW90TrmJMpNcrOQsMgX8CL0wf9wCtmEL95lWMlyzLzGN5kAvVtfkT L5ohFmCn6Ux/+kXPm+sJTLt4u/JzuD8NFQhl/ATx/d4T8wxEbDUzTdiQWyxDL4wq 0knKSwPbYjNduhBjvbh4NnSjlG128XPaiyCL22GND2aAIigk3R5JaORFBokmWBrN PPqbEaVTIuUvZmRQVNseUbjQkraPCSjtvKZCqa3GbM0OtSJDUsywZ69TmGzM1wZZ ATazMFbdsVRVTOyuLxWU6GdVrlb3hV2gjAR72lKQQvISrkAZtZE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApPlVG/VMqjMCKR/EG7Ip eYE4zf78NanEyPI3py+kWy/Q3XKwml1W3tGYoCd6vevqXD+WrbIQ1yMZ88tRj+7o R2ebtG0XGYvyVXISyty0kYymxF2/Yx3ebdzjl/xAcoqOE9N+sdvpXZnCp1gmQaAk 5sL6yOchOYesTlZQD5ZecKyozt01lEQLsbN5qY1kdTvAc74ghcNSttuB+IzYRjC1 5CpI1UE1XgLXVkWhPqYh+fSqLpMMJK4t1EWQIf1BNbnJS6JW4+GFEOFUNviHuAzm Owzp6i+BTziidPOoGsIaSMNrkMeF/LAKZUSZfB4wjJqq+qC4T4zVlxUMrvyXNn1N dWp+Z4V9htKUobr5jvvHBjpdDJAnAydx0bn4SYb2XesfN8KPDT0Pc1r8XsagOpEk PxRZ7anWHifNF4RR/fbTLMpYCTsEYGUqS3PbzIbKV740AFohAXIPIGuqu3/+hFtN uIblgNI34BUR4Pfr510Cv2LDGdl7fHtsqBoDOaglVsUEcZi7hZVq4Tkkm6CoGuRo ft50MgpmbUPP87yvpIixk+iQXlHzhCcyZCrPeOz+hfG4Vacd0wDqbAbCMegsxRyY qi3pS+n/mH4Vn3bh4I/bSsyQAWjAPB4Qu8OV6aFWeFJ4kub6BNxIenJlzlBQF+xl axvhLI1tPg/IAu3v34HeQDECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 323977513058578811451261153442336543559522 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-17 13:39:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-15 13:39:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.igani.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 673035016540716690321181188151557590846586632327527531943116871726768525908248616175799048019124843696275304496255510149438677052360930848767212722004700294746165564727943817691302840960673364469840131925409165713554317898398010796494022676180957599119829112061672701676051461901805606455266354651577713879506708161460643463875228912160795416195216948480401733444856838768434827135866355339026045771655938586381068781332007645234875777022637685105993810682214862337486063653312629578932819139540558174903379820136689107329053217587290546056609654686589591904365534142944126040394372734561383909949049136361959357390920773479284868660297472021788821360876727361622376671394798410578897756481974781739030591429149701634029437972392295505369046812898346082796064129203688106354075976394802845727482761629560921339234035960796805588699993257508342112940385972172487231928581623588970670085362009577257077454602386317420112672721936460854304628579352846465248408915187726426667482653841516980110636854683582040643989966988132209761813399069818563946479201526099364371668792378897706727764126147761496404533952986501661327473880020477194041221131782705762374473459113368121167112976464698736504750618749469553253097204412899919133862150193 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 710223beca194f4c3d4ce471db8b880659d32eaa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.igani.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016c005fd6b20000040300473045022100aa20980d580331188031e994a84da1603139fc4b24dc701ada4be3e0eb69eac1022033339012d6965a8dc746ffedab12e53ac88548fc2e87f2d06d1b7549a681f58000760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c005fd6a00000040300473045022100f111f67e6f8b9affe61137d9bd97a4bc5f5725c11f5735f5bb1d0365a73ad81d02206d56808a67b57343fbab87f276a11784deae7f53f6348e4400db4c19864cba7b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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