www.pignola.net
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:54:0a:73:73:55:78:ca:d2:c4:d5:7b:ae:25:10:80:ff:2d was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.pignola.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:54:0a:73:73:55:78:ca:d2:c4:d5:7b:ae:25:10:80:ff:2dSerial Number (int): 289934468349985033167878081943771572928301
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 76:c3:9d:60:8b:20:c8:7d:e4:a3:3f:d8:21:94:35:aa:aa:3a:b9:89
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): db:f3:e9:79:96:28:c2:e7:c3:33:9c:6c:e3:0a:73:05:3d:3f:bf:c7
Fingerprint (sha256): b6:fd:d5:da:ee:8e:00:03:a3:aa:03:cd:cd:27:ad:77:c1:8d:0e:e4:39:e1:7e:79:46:13:bc:72:3b:5e:24:21
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.pignola.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.pignola.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.pignola.net
Other certificates including the domain name pignola.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.pignola.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgISA1QKc3NVeMrSxNV7riUQgP8tMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjcwOTI0MzlaFw0x OTA4MjUwOTI0MzlaMBoxGDAWBgNVBAMTD3d3dy5waWdub2xhLm5ldDCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAMHN5PmLOAiNQF6VzmK7k344x4J3JdNy UJyRzaUGqyr2Am1Vsfpo0/DedI65Yu3OWgVyYYzLFdgG/KPgnWcWjCFK3VDjmOoB RghfcbhGkeyBqHOdLLrcb9pJgqwYv1JqNXMI7AxVoyY0iB9Nqc8/Nf4u9uzv5mY2 ZLzl3vi4t6U3ue4q8Q1nTEpLuVu2haEtKkeZ7sYIt2d53VJmWBhRof1Sp9PQricS Cp2EoZtd4hjUyO2GEdGMG+afVMAddQ20E9A9BJQbDKhf17n9e7I62Mzj+I/5esMF KfUm0WBOjEA94cJlzIIYV/AReShpEhvAb+lcReRLnuoGt4JrjwdppF29aGVZ6ADN KHYUNhTO56651QCnzZZNvcT2ha4QHWQlDbCVUsO1NRR62k9S2JjvwlmEQ1Vxgdl0 3559JbOR2LFhSMakdDsxNtBR9ESkOL+peG81uefJiHLVtmaxEL4cqr5vACuxHTQK 2znJBZ6zz4a2v01iOG2I2ckNQQr7J7B9leP2KliWviQgJDPlDbDxUXCg9tWLQwS3 WQ8WKvBsEz9O/j4i0L4dBoWxLxknrzwqyCsISPESRpRSNU/vf5VtM6+jgaYzOqoY +TmeN3dpMTruK7Tx+Z1hKPRaEYbABjwEmDTZdI+tJAf5qLjeXb8OUTvCoR3AJktI cH4VYtfbu31hAgMBAAGjggJlMIICYTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHbD nWCLIMh95KM/2CGUNaqqOrmJMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd3d3LnBpZ25vbGEubmV0 MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB 9gSB8wDxAHcAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFq+NIX 2AAABAMASDBGAiEA+g1IJ7wNBdXTZFygNSHBQRHP0WTqjyYRFFZplSakdCkCIQDN ujbhUXzaY5u/UzXUxO6G0EBHzfnG8A7SqFRWJsbH2gB2AGPy283oO8wszwtyhCdX azOkjWF3j711pjixx2hUS9iNAAABavjSF08AAAQDAEcwRQIgAWlH/RQMjVnP5tbU rc0IRnyTJsTYkBJlMb1xyFblmzwCIQDGwzd14BZlUKs3JazSDMaV21HGfHZXy6K1 xHyFMIj5vjANBgkqhkiG9w0BAQsFAAOCAQEAMUhAuQsnPmU7KA4y0U/N/3J9TRPm VsxWs1CXBYi4h8qQyRlScaL6VwA6R/DTnDYIgacfAfk8LS/4NNGRUHFSBcIsVVeh 8TXbfBuKnEJK3HYusg63MX3t2dIdv4u0k7XwwU7jHVoY9ZCAEZ3U3hJjulMhSFWg 1TDtlhxcoRoZtE04xfBI+7DPtQUvXjhwEsedlf0r/3LrxVD8SdPozcPrzV0qIeST hxEQtHOxNaGoUCmC+p0AEa8qNuRAnLLlyC4TvoL5SSqtfqpX7M/LQrQ79lLlbBo8 Du6gYTH8dUmKfelHUgNRQz4ZEOaR+PAkcrt6BiipcVylwvFT5yrjC2GH/A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwc3k+Ys4CI1AXpXOYruT fjjHgncl03JQnJHNpQarKvYCbVWx+mjT8N50jrli7c5aBXJhjMsV2Ab8o+CdZxaM IUrdUOOY6gFGCF9xuEaR7IGoc50sutxv2kmCrBi/Umo1cwjsDFWjJjSIH02pzz81 /i727O/mZjZkvOXe+Li3pTe57irxDWdMSku5W7aFoS0qR5nuxgi3Z3ndUmZYGFGh /VKn09CuJxIKnYShm13iGNTI7YYR0Ywb5p9UwB11DbQT0D0ElBsMqF/Xuf17sjrY zOP4j/l6wwUp9SbRYE6MQD3hwmXMghhX8BF5KGkSG8Bv6VxF5Eue6ga3gmuPB2mk Xb1oZVnoAM0odhQ2FM7nrrnVAKfNlk29xPaFrhAdZCUNsJVSw7U1FHraT1LYmO/C WYRDVXGB2XTfnn0ls5HYsWFIxqR0OzE20FH0RKQ4v6l4bzW558mIctW2ZrEQvhyq vm8AK7EdNArbOckFnrPPhra/TWI4bYjZyQ1BCvsnsH2V4/YqWJa+JCAkM+UNsPFR cKD21YtDBLdZDxYq8GwTP07+PiLQvh0GhbEvGSevPCrIKwhI8RJGlFI1T+9/lW0z r6OBpjM6qhj5OZ43d2kxOu4rtPH5nWEo9FoRhsAGPASYNNl0j60kB/mouN5dvw5R O8KhHcAmS0hwfhVi19u7fWECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 289934468349985033167878081943771572928301 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-27 09:24:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-25 09:24:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.pignola.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 790652461382384939183722092339056108357487669282571628481451948447666139847707677323589989516986669121608671290680186062836278235522874705186935894301495893570671325572361732671206778672263879275706060810688138279499482404103578379154322560349908178270982619822950508874609984529018017598265703201536419532835442714025584122908503709199944653884099162346718460811996986789270531087683257768480877811667492378804819233275444874993964362826139787985196579820840521340985862450032736535969686024639084913766487158260268350011998698202102072576591115755335726402098929385885107473666268319361762441834677902902839622432435103925726851194276363692523318729303954801064284822282527189157505610484190175873572279823128315813760546137387709369115966957738800598974435701014936115616420573386716804011245012691306805344778744263085914541928163065384124740110004067366685603995442890500688624667166140183791913229430642292778216584084070526528586363186910733094756610886651729969521873949394121649218106019843178728494443694574038049483294377963913762475553758625426536103603957818668402836029414271250353089470773020509785295256559667098617860475512527223918327964608163652181131207676089471299691854191819896115356014591446546900867960503649 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 76c39d608b20c87de4a33fd8219435aaaa3ab989 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pignola.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016af8d217d80000040300483046022100fa0d4827bc0d05d5d3645ca03521c14111cfd164ea8f26111456699526a47429022100cdba36e1517cda639bbf5335d4c4ee86d04047cdf9c6f00ed2a8545626c6c7da00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016af8d2174f00000403004730450220016947fd140c8d59cfe6d6d4adcd08467c9326c4d890126531bd71c856e59b3c022100c6c33775e0166550ab3725acd20cc695db51c67c7657cba2b5c47c853088f9be . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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