www.biondina.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:25:16:72:6e:6c:25:b3:8a:a6:fd:1f:42:c2:16:c2:9d:8d was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.biondina.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:25:16:72:6e:6c:25:b3:8a:a6:fd:1f:42:c2:16:c2:9d:8dSerial Number (int): 361069428480498216805270364120143320227213
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 31:c4:0f:37:13:61:4c:77:5f:eb:75:9e:ad:36:00:e0:5d:4c:a8:54
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 52:2c:73:43:35:6a:0a:7c:e8:d1:64:6c:61:7e:bf:cf:ed:1d:20:30
Fingerprint (sha256): b7:46:a5:3f:75:b7:ef:4b:bf:95:3a:6e:17:96:e5:28:54:b4:c3:c4:86:b9:a8:39:d4:4b:08:76:f4:9d:38:e5
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.biondina.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.biondina.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.biondina.org
Other certificates including the domain name biondina.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.biondina.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgISBCUWcm5sJbOKpv0fQsIWwp2NMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MzAwMjE4MDhaFw0x OTEyMjkwMjE4MDhaMBsxGTAXBgNVBAMTEHd3dy5iaW9uZGluYS5vcmcwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC8f6f9Dsbg7X8HGXk+itwJ7muoeoXd 56LorOMSPFXS7n6CFmEkcEm+KPMTKS/WaSlDYfNwG/Se/zmY7dWtb0DriGPzCdHI 3dFCQYNAtrTrAIN6uuGFjnIfn/hvWUNp5AsdNtSekaHZnylLvQfcUtyPq0wXdGQa xSdJhNB0rdvat616mPTRFN2kItbm7/Wav+yiqjRuBEGLG5wDOmsRptGhPL4+Phsc 6m1Ir46nS4/Q3yyoTWyGp6PFxdJoVyRREZAFeWwHNnXzz2h3DPOaxYYd3Jxc7VwG C2qcrynflmD04VrIaRG3D5tqcKP1HJuOAlBY3alKMjNhpvJDdysFimhD2iO8nzfk 23DDKcn6hl/qhxsvowZ4d9zce3WHYKgkTHzeS3/OOxBsZ3ZV/R9YM/Z3qTUCkK4C vwAXMkxg77sjeVvyQJDY1kUiDUL5afZJmCCc/L6NYEGheYtClhKqJTPzE4RTOddf vIlfkoWmQIIF+ECr5edes+owH2DxuIFYnBUQlCu17Gwr0IMhfXxEQVrRQcSfQTm4 bRy6hApTqQuj5VHgb4HT2UFTwZ1MGImdIxO0JY8QS9Cg3AyNQdEOPSq23Z89PoWb FW0jkFSLnzpPzKfeRwyOQZFt5HuxF8HjTtWjxmAqzgEpurdvFtYmtZOAA53M/mVv tMcAW12tOZ2lZQIDAQABo4ICZDCCAmAwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQx xA83E2FMd1/rdZ6tNgDgXUyoVDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5iaW9uZGluYS5v cmcwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQC BIH0BIHxAO8AdgB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAW2A LOR+AAAEAwBHMEUCIGJgjw6hoG6C+Xx87swA8FuYZEtr7baxUe5LNOn/clJ9AiEA 8V5/XwlgBy3tK9MIdsB0AqbWJbE/dGlHUhZsEbXJCPYAdQApPFGWVMg5ZbqqUPxY B9S3b79Yeily3KTDDPTlRUf0eAAAAW2ALOZgAAAEAwBGMEQCIB0XHurGxSbHV/yQ 00+9GzMeShFfwLMuZKKHHfEptgmeAiAuNVp6aJm+ypqzfB6VsfIyJvj8kXB2psJk O38rthU7/jANBgkqhkiG9w0BAQsFAAOCAQEAP70Pol+NhpRjUMilYvOEolVXhEen H46OIMpQ8v04vDa4EeTajPw/sA4wu9wp5o+QHRpIeKRwbhil1etegYTYPlerFCJL VGZy3NE3L0aHO6+ZAVTXdHJfo0iWZx/l1ZGh6PH9+VaBdyDXdBB+IkH39AAdzpVi nAKYPRDz4Gc3w6JyvyHByzpIjQWJ1RHGPYYkzox2ERJed7CknjPmDTPkKu9GvIL+ eixjDXaeFdm2Vtqs54Z+boWZDlW70T5Lps4ISS0DfaMD/b7X5bHsEpxd1qApV+iP CEMAFzbFmzR8d4O+dcB+KyEi/ID9TCpKZyuD3Rkok0LvGsbeAG1gtyHeiA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvH+n/Q7G4O1/Bxl5Porc Ce5rqHqF3eei6KzjEjxV0u5+ghZhJHBJvijzEykv1mkpQ2HzcBv0nv85mO3VrW9A 64hj8wnRyN3RQkGDQLa06wCDerrhhY5yH5/4b1lDaeQLHTbUnpGh2Z8pS70H3FLc j6tMF3RkGsUnSYTQdK3b2retepj00RTdpCLW5u/1mr/soqo0bgRBixucAzprEabR oTy+Pj4bHOptSK+Op0uP0N8sqE1shqejxcXSaFckURGQBXlsBzZ1889odwzzmsWG HdycXO1cBgtqnK8p35Zg9OFayGkRtw+banCj9RybjgJQWN2pSjIzYabyQ3crBYpo Q9ojvJ835NtwwynJ+oZf6ocbL6MGeHfc3Ht1h2CoJEx83kt/zjsQbGd2Vf0fWDP2 d6k1ApCuAr8AFzJMYO+7I3lb8kCQ2NZFIg1C+Wn2SZggnPy+jWBBoXmLQpYSqiUz 8xOEUznXX7yJX5KFpkCCBfhAq+XnXrPqMB9g8biBWJwVEJQrtexsK9CDIX18REFa 0UHEn0E5uG0cuoQKU6kLo+VR4G+B09lBU8GdTBiJnSMTtCWPEEvQoNwMjUHRDj0q tt2fPT6FmxVtI5BUi586T8yn3kcMjkGRbeR7sRfB407Vo8ZgKs4BKbq3bxbWJrWT gAOdzP5lb7THAFtdrTmdpWUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 361069428480498216805270364120143320227213 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-30 02:18:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-29 02:18:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.biondina.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 769007428068643785590545726888222982913053744081700176998431486144755599641374503058819115990379988583265716494458917394395687405917159408589530165761607316494108199251407610002974089487045792871153783853973137066022365905483314080471900343109524042155882695527608433016429118249851092136193793654455449780117662642896698630218897133356016798373532659932427280760576720145364164273683513613401565163279060430738091680589426594292077098979689385000824416973672948018130458208650029287993714655555977811706474176879216247080126841865342209338430148802189290888829450323586321282418199051422790996759787733132912407288678446876408105641577210246748816009211759037785573896998357235465412302204137254568158632481618641187526749661400748109267295278187553108080338796035870431337812173666492005828356402351293038692934014046294896197968777758500229455268911599768023940641344765931406272301519535376258333079057626241252864644226029490747459816568966506842572622143031559413486538398142923593376797811344532217534024717003567347547448051405485161009582152487924852247589946089729997615387060448454217848335998600671110878513292679546620193656342071341551404447968545244947884561248607766988043099361796802039395387804322180448332455716197 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 31c40f3713614c775feb759ead3600e05d4ca854 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.biondina.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d802ce47e0000040300473045022062608f0ea1a06e82f97c7ceecc00f05b98644b6bedb6b151ee4b34e9ff72527d022100f15e7f5f0960072ded2bd30876c07402a6d625b13f74694752166c11b5c908f6007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d802ce660000004030046304402201d171eeac6c526c757fc90d34fbd1b331e4a115fc0b32e64a2871df129b6099e02202e355a7a6899beca9ab37c1e95b1f23226f8fc917076a6c2643b7f2bb6153bfe . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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