www.genzanodiroma.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:2e:9e:28:c4:ca:53:ee:54:0f:01:2a:de:30:73:46:ef:cc was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.genzanodiroma.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:2e:9e:28:c4:ca:53:ee:54:0f:01:2a:de:30:73:46:ef:ccSerial Number (int): 277200076380234613880935482240840229121996
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8d:53:ff:b4:31:cd:2d:18:e3:2f:2e:2d:3b:60:fb:28:6b:11:d2:59
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 4c:ce:e8:a5:4c:e1:f0:cc:c0:c6:c7:5e:b9:71:32:52:0b:d3:77:1e
Fingerprint (sha256): b8:a6:16:4b:dd:27:f8:e7:eb:3a:26:a7:9a:fd:56:06:11:c4:27:d8:81:cf:f2:4c:27:de:5c:22:70:4e:8c:27
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.genzanodiroma.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.genzanodiroma.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.genzanodiroma.org
Other certificates including the domain name genzanodiroma.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.genzanodiroma.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgISAy6eKMTKU+5UDwEq3jBzRu/MMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjkwMDAxNTFaFw0x OTEwMjcwMDAxNTFaMCAxHjAcBgNVBAMTFXd3dy5nZW56YW5vZGlyb21hLm9yZzCC AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMlahvpPFsZxn3BnFuTQAPsX Ypd+YrgT1QFJ/82PhOpW2y8yBm7o0xDxxALAV/QmvsZ0BndWAjeC/gn66Vga+DLA eD2Lx3xMZXrKkrCyjTEi3SSOfpYWZpMhepddzMMBLi2xi5j1b7mRCEozMZzb0Al9 z9ft61pcuOoO4s5uOnk142FtnpC5YAIdh2UrgUR5pjfpwqwQ1pg4/Ouccry5Jo3U KpTzdcuGA7B1s8tvLoUoYq9rJ/Qwrd8yBm7siOLbTbXSDF+kOyg0DsKUnwudl9bf boDZht78+n9kmmIXWEwVb7jMZb0LER1Uegn+jdGHrgwFdQHd0lSsP4clnAqoblJ9 FFiprDl2oxLahFrxMZBSwwkFVp2RPnfJwevAhNA0TNsD7aIqpKYDMknUd0RxUM0O rjlVvlEse2PjzhyMs6X72gO11eJGlzXFveEJyyraKsxGJmpovX2xxTtXJqRf+PYz hKIyjBlJQ+z418wtBhalTmWsZbZVGrmGxW1TkHlxN9qWTLZU4gYo0oHuWmHL2yQH obxEUT770WFxfkFWD0Y9PHaspXc6Dm1OSMndgVgIsNAI3yp4WEj+rt1BxjEsCaYe n28ffL1YWE77B5cPcyDEJoA5Ud9egCtLul5KZb7YGDzyWTVAa8UXiYQn6ZMXXSBQ lNcZtRxnQJmZ32mnbygTAgMBAAGjggJpMIICZTAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFI1T/7QxzS0Y4y8uLTtg+yhrEdJZMB8GA1UdIwQYMBaAFKhKamMEfd265tE5 t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29j c3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2Nl cnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wIAYDVR0RBBkwF4IVd3d3Lmdlbnph bm9kaXJvbWEub3JnMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYK KwYBBAHWeQIEAgSB9ASB8QDvAHUA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMB nd3x2/4AAAFsOz95nAAABAMARjBEAiBf5jjuT9ARzOGl5Or9cOuooXfEvTEbgN9Y QAYwxjl8cwIgIEdQdha/ZeKGW+MsFsuk2BTQa/A/SQ+5ZyhBCztb3OIAdgBj8tvN 6DvMLM8LcoQnV2szpI1hd4+9daY4scdoVEvYjQAAAWw7P3uiAAAEAwBHMEUCIGmO jXLhKlYBl3euItuNnpF/59xt8VplenyuzlEWQhIQAiEAgeJR/859EAvP4jT9CPxM ljGOqmiyo4JZ0DF5TkEzYKUwDQYJKoZIhvcNAQELBQADggEBACkHI9mHZeYckGnr YHh/iYM0bWIBUi/z9Bpt7sOkNiqxNbxmz29gMD8PMmFbJgnxSgmqkDaprb0UUTev HCeTjyiSd3SgTAIojmZ8lNOyOByYs53Pb1o26XaxKzl7VanPdDISjcmrXvW5drSK LWa28g455gndLPCdbhE4kGsRSYBySOD5JibVwtV6c+a+8dJLNhsxdISEPkaLU8XR wx3UZogrsKhJ6QkqQoWW9QCOPdcIrg1Z0KPTPaiOG2tHg9R4CdKXuSCDR57x3ZLU 160GGUn5ohWfHlyAA7qdqAS0kVKSVwxW25mNP0kyKUZupFrQ4N3qp8zql9+ef8CZ Vz5y9kc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyVqG+k8WxnGfcGcW5NAA +xdil35iuBPVAUn/zY+E6lbbLzIGbujTEPHEAsBX9Ca+xnQGd1YCN4L+CfrpWBr4 MsB4PYvHfExlesqSsLKNMSLdJI5+lhZmkyF6l13MwwEuLbGLmPVvuZEISjMxnNvQ CX3P1+3rWly46g7izm46eTXjYW2ekLlgAh2HZSuBRHmmN+nCrBDWmDj865xyvLkm jdQqlPN1y4YDsHWzy28uhShir2sn9DCt3zIGbuyI4ttNtdIMX6Q7KDQOwpSfC52X 1t9ugNmG3vz6f2SaYhdYTBVvuMxlvQsRHVR6Cf6N0YeuDAV1Ad3SVKw/hyWcCqhu Un0UWKmsOXajEtqEWvExkFLDCQVWnZE+d8nB68CE0DRM2wPtoiqkpgMySdR3RHFQ zQ6uOVW+USx7Y+POHIyzpfvaA7XV4kaXNcW94QnLKtoqzEYmami9fbHFO1cmpF/4 9jOEojKMGUlD7PjXzC0GFqVOZaxltlUauYbFbVOQeXE32pZMtlTiBijSge5aYcvb JAehvERRPvvRYXF+QVYPRj08dqyldzoObU5Iyd2BWAiw0AjfKnhYSP6u3UHGMSwJ ph6fbx98vVhYTvsHlw9zIMQmgDlR316AK0u6XkplvtgYPPJZNUBrxReJhCfpkxdd IFCU1xm1HGdAmZnfaadvKBMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 277200076380234613880935482240840229121996 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-29 00:01:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-27 00:01:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.genzanodiroma.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 821451109963656707131292329128515443440997814238773161903740265629470194542362851050853804340400499002814547436647934525033563325600476815662364957698324115101122609592825245302143845028564448113778400985231929491345477788463538048951536270894665330117602058898852249854911380704182616345699398357178165534802959670950228563890483806542051338772485281015162398582599708827834436433897841933384541867359451593841409999804673399941551706624642802945290140153039358864494474924215630237925235895414540768202652783896674452167590695738485322677854909969354456636143087373835519999089539118319824781825986203623660532410448464512514859743079766996712969528159974744632407833553570813386187343054077951189089104239400973812915045969967084874927176053473604272068270185314264701992356496922085771322218400220832453042527559208024713173521574748963345036393431107298199292592651822166734214764252499174943360070278768471134952542600978492410656612271531857194542774621578702677909303106472109939448523535821712577219102425195600764472075521217035764420206566124048814045949680611099787011309789688566168581114621293453987060366794211752299778419663381630160084662183485860671002782388138365268147153733640507600121954924456256296780282406931 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8d53ffb431cd2d18e32f2e2d3b60fb286b11d259 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.genzanodiroma.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c3b3f799c000004030046304402205fe638ee4fd011cce1a5e4eafd70eba8a177c4bd311b80df58400630c6397c7302202047507616bf65e2865be32c16cba4d814d06bf03f490fb96728410b3b5bdce200760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c3b3f7ba200000403004730450220698e8d72e12a56019777ae22db8d9e917fe7dc6df15a657a7caece511642121002210081e251ffce7d100bcfe234fd08fc4c96318eaa68b2a38259d031794e413360a5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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