palagi.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:24:cb:79:39:7b:14:f2:8f:b3:fc:d2:a2:56:18:af:e9:1c was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=palagi.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:24:cb:79:39:7b:14:f2:8f:b3:fc:d2:a2:56:18:af:e9:1cSerial Number (int): 273857485721347639597158802770554998745372
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8d:20:88:5a:25:b4:a6:2c:2c:2d:97:9d:7f:35:a0:99:74:94:7c:1e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 2c:40:e9:57:6b:c2:d3:64:ff:f3:b6:25:f8:9b:11:21:be:9f:1e:b3
Fingerprint (sha256): bd:dc:9a:24:0a:76:3b:9f:ed:92:83:43:f8:8a:d8:ab:af:01:30:5b:1b:be:78:fe:22:ba:1c:0a:47:b2:96:3b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate palagi.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for palagi.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
palagi.com
Other certificates including the domain name palagi.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for palagi.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSzCCBTOgAwIBAgISAyTLeTl7FPKPs/zSolYYr+kcMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMDIwOTEwNDhaFw0y MDAzMDEwOTEwNDhaMBUxEzARBgNVBAMTCnBhbGFnaS5jb20wggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQC90gTtdHrcTrj2Q9HuaSRe7XooCL1iubEY9Ti/ t3B+81mI+5c0OqDzu9Zcq4d619maQb9NT+0V0xYZ924jImOeoA1srVZ9LbA4Dt1i 2ridTvZwkXXsfUDghANoPb2n0b7kSXQPbvf7eC2HrQBwJJlWghG95eIKXfdyOA2c TqGobtAeqmiG+7srk3dy537QFimYBxIegVmUrEFEo7ud8Z2ms+8zN2RdGd7rRhFm O9A0Bf0qCGoAqs2CyMkFUux4Io1ltl46EL5AlvPVIXppjibEItVv2DIxwh+l97Fp RGTKeZpIbpmVX9TT18SNfM8vY0AyRMoDSRIe8xKH2naUsnq3inm7dbiCBh1gpS3s 4Ogv50UaAxUa2X+7vtrwkswll5ghi5rjOe7fSnjTZdcRMcD15OEPO5itLqSMyrtd vEoYNFmvhBxWnQnQOTgxkItsmytLoZFIo12YNF/o3prK9vgUuuwtmp66Rtq1NvTe xjuNirSZ77AwuEKjcKGqsvNseNEGA4f6qoQGjAfTQPc1/3U4nRxqNp6u9aghxHtl C0g9GNlWp4e76pWB9JafNNkbiZFk3CpFh1q24o/L9UKAVJk4ytEEwEMkDrHAju17 kMj3qlhqzQfRXNTG3SEpQ4Mhg0nXuqaCXCUwGngpD32ly5Usu0u5wABFAjs0kXYs j4H+PQIDAQABo4ICXjCCAlowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSNIIhaJbSm LCwtl51/NaCZdJR8HjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCnBhbGFnaS5jb20wTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQBe p3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAW7GF1foAAAEAwBGMEQC IEHh5IhBBkMHPLqrP1GMPANfJMEu17b3PaQWq2RGQKzaAiAvaq+P/CnEZBzE+q0u T832V81ozL9nj45TxkxCqyYGaAB2ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJ Uy3vi5BeAAABbsYXV+IAAAQDAEcwRQIgEj6SmkzM+5j4Bsi0dlcHwqKzpMlU2i9i fEEf8TIl2GMCIQD0vKYuhJZouo3a5P8fB3hDSciH2XQ28BkXF7zKnyEElzANBgkq hkiG9w0BAQsFAAOCAQEAlbg9zcvLedF7IRORBA214Sem5e1Smom13FKUHwswnCom YjlZAGEsmaW0kHdWby14Ef16hxNL2kmvqHPGCbkKxxOoVlRjjn4uxFMps3gAYkK3 +idblRzlsqQd3T24jKx6TVVPMX9KNgj63peP0tAe7seMrLqRwlYRX4aJtYXsWX5C 7/QpxCPOjJHF1JCsdAITEdKjNpE9pBA2pdMNUuvG/xkF5xwS5yCZkjemUkxDQiya JS5d1MjayIm+4kaTQtIsm6AuMKogbUYPJr8KV1UG4CVVEpjvCD4rqwzL6eCqDTHm EIn8OkCXhufJPQKTNa0SjhaFLGjvlDxL87wn3szBDw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvdIE7XR63E649kPR7mkk Xu16KAi9YrmxGPU4v7dwfvNZiPuXNDqg87vWXKuHetfZmkG/TU/tFdMWGfduIyJj nqANbK1WfS2wOA7dYtq4nU72cJF17H1A4IQDaD29p9G+5El0D273+3gth60AcCSZ VoIRveXiCl33cjgNnE6hqG7QHqpohvu7K5N3cud+0BYpmAcSHoFZlKxBRKO7nfGd prPvMzdkXRne60YRZjvQNAX9KghqAKrNgsjJBVLseCKNZbZeOhC+QJbz1SF6aY4m xCLVb9gyMcIfpfexaURkynmaSG6ZlV/U09fEjXzPL2NAMkTKA0kSHvMSh9p2lLJ6 t4p5u3W4ggYdYKUt7ODoL+dFGgMVGtl/u77a8JLMJZeYIYua4znu30p402XXETHA 9eThDzuYrS6kjMq7XbxKGDRZr4QcVp0J0Dk4MZCLbJsrS6GRSKNdmDRf6N6ayvb4 FLrsLZqeukbatTb03sY7jYq0me+wMLhCo3ChqrLzbHjRBgOH+qqEBowH00D3Nf91 OJ0cajaervWoIcR7ZQtIPRjZVqeHu+qVgfSWnzTZG4mRZNwqRYdatuKPy/VCgFSZ OMrRBMBDJA6xwI7te5DI96pYas0H0VzUxt0hKUODIYNJ17qmglwlMBp4KQ99pcuV LLtLucAARQI7NJF2LI+B/j0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 273857485721347639597158802770554998745372 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-02 09:10:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-01 09:10:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'palagi.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 774399618622984542858354622685387738272787285662765586579763387719842095471236827271996272758560245321906645374564497959837880339402021675921397110763416117006534016616856526002167288749096490225010275380712457409729823341315524241589427219052877270369658767241631148861143389530127250813234347603199294888926447203587759154695915145013267640248525781666333412854338009589821267238074014927805522474261229569750027489644312259362639235327304084757770644527410518772693444817665996435811455905049146482085087841701815676923722743265062857961398407347600530004886428053686324754554724632583128127745159821947364244643434545295394457313802868850189775945748864249620304182345664152522857234955322031291102286911349343996748512246523322872072618712664624259984338185761617273124217965805938021849561061974649105923475033457179521293054816502019256614263799568446275023744085628625834504312660258230838735072063654370617005110621780937432413058158218953861202401898635800324361314595290046869209465479760765284634258310030825026935056602447755532820438663880438128987992881551469713659598093257508803507645384539202266163787829205401552626961741870124531001289795599159332742475659749512414236756223804585304837018751489952997218894085693 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8d20885a25b4a62c2c2d979d7f35a09974947c1e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'palagi.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016ec61757e80000040300463044022041e1e488410643073cbaab3f518c3c035f24c12ed7b6f73da416ab644640acda02202f6aaf8ffc29c4641cc4faad2e4fcdf657cd68ccbf678f8e53c64c42ab260668007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016ec61757e200000403004730450220123e929a4cccfb98f806c8b4765707c2a2b3a4c954da2f627c411ff13225d863022100f4bca62e849668ba8ddae4ff1f07784349c887d97436f0191717bcca9f210497 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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