paulogasparotto.com.br

Issued by R3

About this certificate

This digital certificate with serial number 03:de:82:6c:f9:31:54:45:65:95:4b:64:0e:f1:af:00:19:d8 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=paulogasparotto.com.br

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:de:82:6c:f9:31:54:45:65:95:4b:64:0e:f1:af:00:19:d8
Serial Number (int): 337052908713470091562486684189324281387480
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: fc:97:d9:9d:60:cf:2d:da:23:25:e7:6d:f2:7f:51:fa:5d:86:c2:a1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 4d:1a:1b:66:86:a4:fc:2b:3b:04:39:1f:f2:be:ca:22:20:d1:07:2b
Fingerprint (sha256): af:05:57:f8:de:22:9c:f9:a3:f5:50:f7:52:e3:2d:73:ca:83:f1:91:e4:c7:39:96:51:04:09:01:cc:da:84:19

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate paulogasparotto.com.br

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for paulogasparotto.com.br

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.paulogasparotto.com.br
paulogasparotto.com.br

Other certificates including the domain name paulogasparotto.com.br

(limited to 100 certificates)
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br

Certificate

The complete raw certificate details for paulogasparotto.com.br in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvh2Eug2sgKVkzy/tvu0f
FeffcRUzbjXY8k6GEOhaR2tE7LxMZC+wy7f7HScKTTg+ebwzbSzgD470lfg6eBmp
M8TVp310F99+GHN+XZMZkgSgemCHGBG4Qe6X9Tgu85qLPZyCxKod8Nz5lF/z0uod
OV0U9lUvSYPpZae3HPhUnhuAdaxygmtRwYrmP+UBtslJ6nFy4otrsHz/46xgXdzI
KGcMCUlUrHHrlzS06qPpc0apn+zoMyQmtJwmUkBuNlWxs4X69KW+c2ajn8jRBojb
kcY1fLmPXu3ysQmQpLwx5hbTyUSa1itmwfZv7RiT561gPiEHAoo+jRRR/lxlp2zR
gwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 337052908713470091562486684189324281387480
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-17 22:11:06 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-15 22:11:05 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'paulogasparotto.com.br'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23999834040637947536904187349906906545135746466429311577605940717991043460775746705103231009622781843397084448587324239241463545806767726471996563953197845322326097818257322423194435764271633552267761457455937551560327361416381513335296392858307681194298176896462980489588150050132650244156667784375782193193468123640739557000068790678885174109695894590410505869269488181164993022577399847413698257527220255585086221462416767256653617389649734803617031567203227146829165827087331253909008024233156502418817570911711129964209170196980539578076163797057490720313377885044057600328522357517692839833423318677638280434051
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							fc97d99d60cf2dda2325e76df27f51fa5d86c2a1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.paulogasparotto.com.br'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paulogasparotto.com.br'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000189661f2dc70000040300483046022100d1ae4f8715b87522b1da7a58a006e1c1a276a57dc4a7d8f3a8db0a37f06916f0022100bb6efc04353abce4abf9188b7f6bc2ac2a368ced1098461d3a624aee2f1f205c0076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000189661f2dea0000040300473045022018985cdc546fb6f3e15115679f48b986b86916f09a689f10e6877094932440b4022100f8e147fcb15cc398e69f579bbdfdfc35af80cbd76eb1f19635c8a6cc0cf87c4a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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