www.nathali.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:9d:a9:e4:41:66:fe:06:45:05:44:3c:5f:3c:b3:dd:a8:0a was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.nathali.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:9d:a9:e4:41:66:fe:06:45:05:44:3c:5f:3c:b3:dd:a8:0a
Serial Number (int): 314987014103355989012645077495061564729354
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 12:f8:84:24:94:5c:dc:a0:4d:e5:a6:96:04:e5:96:69:13:40:ba:12
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 7e:3f:57:ae:f6:dd:d7:4e:65:5f:ee:b3:15:1e:9b:a3:09:42:23:d2
Fingerprint (sha256): b4:fd:2a:ec:60:e5:6b:06:52:39:4f:02:c1:db:f4:13:49:9d:a7:0f:44:31:03:ca:0b:b3:98:1a:db:55:f4:e2

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.nathali.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.nathali.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.nathali.com

Other certificates including the domain name nathali.com

(limited to 100 certificates)
palmspringstemcellclinic.com
nathali.com
nathali.com
www.nathali.com
nathali.com
www.krummrich.com
peschieraborromeo.org
nathali.com
ministry1.com
nathali.com
www.nathali.com
www.nathali.com
www.nathali.com
www.nathali.com
nathali.com
nathali.com

Certificate

The complete raw certificate details for www.nathali.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 314987014103355989012645077495061564729354
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-25 01:32:06 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-23 01:32:06 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.nathali.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 807187801441940370328483474206019563925392713682928806954712479755393676612962987558828733089873968809851840491925016945717522934265321103618138966989722546342190551944823034873314301029311295243109350810684782011806861514330035537175881218798837358232367576828725826688860571990734432443869327298096401710735512660207520041196015917759163993663962795006045871187799429026763442937347183262368436152080281125418806299045014445249758652131995028939173894781156520994459546634677200159067856893721062563431460694238414959288017843627884745957567314696497375567254357479038981018491232806715924969468766047653387387843375704934898664800676455251883407684100156581469823379131127119649859133393022329213605926609277755278702379699380185134601806501845008175503573950435650269443072933424696660477202243892442476970386586219829072136302486579355879155756926187628561402283431595478594063358833404600904621760438243073154522403323759246713852087483410213291731952708042417041504198762737410098478190898262649539252950095506664340106063864092365285483630565314339765922450435482885579526788803037365028919977107129024981137640523782188439329912727942035302857557285910466247879542388822223630197322384811563801350960365627350488789567209181
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							12f88424945cdca04de5a69604e596691340ba12
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nathali.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016aecd4bf890000040300473045022049ea68de32482814381ffaf7ec3617cebcebf5c2245987667b6056378a2a1aa402210083362e30008de9078d161b683fd93385a3dc5de76cabe48f4f4e5f0f213d6c2400760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016aecd4bf870000040300473045022100eac29127159ef056bfc8d92ef06c647dd6f1872e2b9c99acdac7fa6dd4db2da302204788983c7333718bd0e06ee68051b33d91c05bfd8ea275189f002c28543fd215
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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