paulogasparotto.com.br
Issued by R3
About this certificate
This digital certificate with serial number 03:de:82:6c:f9:31:54:45:65:95:4b:64:0e:f1:af:00:19:d8 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=paulogasparotto.com.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:de:82:6c:f9:31:54:45:65:95:4b:64:0e:f1:af:00:19:d8Serial Number (int): 337052908713470091562486684189324281387480
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: fc:97:d9:9d:60:cf:2d:da:23:25:e7:6d:f2:7f:51:fa:5d:86:c2:a1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 4d:1a:1b:66:86:a4:fc:2b:3b:04:39:1f:f2:be:ca:22:20:d1:07:2b
Fingerprint (sha256): af:05:57:f8:de:22:9c:f9:a3:f5:50:f7:52:e3:2d:73:ca:83:f1:91:e4:c7:39:96:51:04:09:01:cc:da:84:19
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate paulogasparotto.com.br
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for paulogasparotto.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
Other certificates including the domain name paulogasparotto.com.br
(limited to 100 certificates)
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
Certificate
The complete raw certificate details for paulogasparotto.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISA96CbPkxVEVllUtkDvGvABnYMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA3MTcyMjExMDZaFw0yMzEwMTUyMjExMDVaMCExHzAdBgNVBAMT FnBhdWxvZ2FzcGFyb3R0by5jb20uYnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQC+HYS6DayApWTPL+2+7R8V599xFTNuNdjyToYQ6FpHa0TsvExkL7DL t/sdJwpNOD55vDNtLOAPjvSV+Dp4GakzxNWnfXQX334Yc35dkxmSBKB6YIcYEbhB 7pf1OC7zmos9nILEqh3w3PmUX/PS6h05XRT2VS9Jg+llp7cc+FSeG4B1rHKCa1HB iuY/5QG2yUnqcXLii2uwfP/jrGBd3MgoZwwJSVSsceuXNLTqo+lzRqmf7OgzJCa0 nCZSQG42VbGzhfr0pb5zZqOfyNEGiNuRxjV8uY9e7fKxCZCkvDHmFtPJRJrWK2bB 9m/tGJPnrWA+IQcCij6NFFH+XGWnbNGDAgMBAAGjggIzMIICLzAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQC MAAwHQYDVR0OBBYEFPyX2Z1gzy3aIyXnbfJ/UfpdhsKhMB8GA1UdIwQYMBaAFBQu sxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYV aHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5s ZW5jci5vcmcvMDsGA1UdEQQ0MDKCGCoucGF1bG9nYXNwYXJvdHRvLmNvbS5icoIW cGF1bG9nYXNwYXJvdHRvLmNvbS5icjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUG CisGAQQB1nkCBAIEgfYEgfMA8QB3ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4d CYEl7bSZAAABiWYfLccAAAQDAEgwRgIhANGuT4cVuHUisdp6WKAG4cGidqV9xKfY 86jbCjfwaRbwAiEAu278BDU6vOSr+RiLf2vCrCo2jO0QmEYdOmJK7i8fIFwAdgB6 MoxU2LcttiDqOOBSHumEFnAyE4VNO9IrwTpXo1LrUgAAAYlmHy3qAAAEAwBHMEUC IBiYXNxUb7bz4VEVZ59IuYa4aRbwmmifEOaHcJSTJEC0AiEA+OFH/LFcw5jmn1eb vf38Na+Ay9dusfGWNcimzAz4fEowDQYJKoZIhvcNAQELBQADggEBAKJOt6Ee45kT eTHXTxFBSlUB5tYsSFSQ7tpn7xG2pF1i2smuEj1MGaaOVX8tDMAFbDEqhZ2VUrxw /HdUoGz5DMrYTVDx1ABeR46FDLGAe8Z0oNPZ97NXqO8DuHzwOcNN0ITnwOSSO8CN 49kVZeOdu49m5N0R/cWIDOGa2NiVTUTc+E3uHZ4rLqXjcLrenPtiIr2bgoyZ+XGO KUbrQdW/2mefZG78yYIoyIjyUcx5QVDbe8nvIn2+HlwfJG0ESpctvR8Lk0P3litD dT/EKTrfeuZJE1R79OG5malnbPxqr02Qp3BJfa4cf5P8pOmnTVEHAFyDsgaMn8IM zuhflhYqvj8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvh2Eug2sgKVkzy/tvu0f FeffcRUzbjXY8k6GEOhaR2tE7LxMZC+wy7f7HScKTTg+ebwzbSzgD470lfg6eBmp M8TVp310F99+GHN+XZMZkgSgemCHGBG4Qe6X9Tgu85qLPZyCxKod8Nz5lF/z0uod OV0U9lUvSYPpZae3HPhUnhuAdaxygmtRwYrmP+UBtslJ6nFy4otrsHz/46xgXdzI KGcMCUlUrHHrlzS06qPpc0apn+zoMyQmtJwmUkBuNlWxs4X69KW+c2ajn8jRBojb kcY1fLmPXu3ysQmQpLwx5hbTyUSa1itmwfZv7RiT561gPiEHAoo+jRRR/lxlp2zR gwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 337052908713470091562486684189324281387480 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-17 22:11:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-15 22:11:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'paulogasparotto.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23999834040637947536904187349906906545135746466429311577605940717991043460775746705103231009622781843397084448587324239241463545806767726471996563953197845322326097818257322423194435764271633552267761457455937551560327361416381513335296392858307681194298176896462980489588150050132650244156667784375782193193468123640739557000068790678885174109695894590410505869269488181164993022577399847413698257527220255585086221462416767256653617389649734803617031567203227146829165827087331253909008024233156502418817570911711129964209170196980539578076163797057490720313377885044057600328522357517692839833423318677638280434051 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fc97d99d60cf2dda2325e76df27f51fa5d86c2a1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.paulogasparotto.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paulogasparotto.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000189661f2dc70000040300483046022100d1ae4f8715b87522b1da7a58a006e1c1a276a57dc4a7d8f3a8db0a37f06916f0022100bb6efc04353abce4abf9188b7f6bc2ac2a368ced1098461d3a624aee2f1f205c0076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000189661f2dea0000040300473045022018985cdc546fb6f3e15115679f48b986b86916f09a689f10e6877094932440b4022100f8e147fcb15cc398e69f579bbdfdfc35af80cbd76eb1f19635c8a6cc0cf87c4a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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