www.giorgia.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:8c:a4:be:38:d1:7c:d7:b6:e0:0c:0a:96:14:f1:5a:5c:b3 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.giorgia.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:8c:a4:be:38:d1:7c:d7:b6:e0:0c:0a:96:14:f1:5a:5c:b3Serial Number (int): 309195370244336233338997281157806540086451
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a5:65:5f:1d:2f:20:76:d1:c6:08:16:c0:2a:f1:ca:8f:a2:9f:2f:db
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 9d:77:7d:9c:c5:30:34:c7:cb:72:2f:e4:8b:0c:41:38:50:dc:ae:97
Fingerprint (sha256): bf:a0:0b:69:fb:96:e3:3b:20:4a:39:72:ae:12:d7:a0:20:1b:0c:3b:ad:25:f1:5e:c8:48:27:6b:8c:b1:b1:e5
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.giorgia.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.giorgia.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.giorgia.org
Other certificates including the domain name giorgia.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.giorgia.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgISA4ykvjjRfNe24AwKlhTxWlyzMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMDIwODUxMTNaFw0y MDAzMDEwODUxMTNaMBoxGDAWBgNVBAMTD3d3dy5naW9yZ2lhLm9yZzCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAJfcptBDJanoRFMoyE90HH12eGGlNqr+ ORG5qLnqpeMMFzf/eFsy2Au3Wv4ECEDsQ75u2HGNb1SExhb4dE/DuYro4QGylNOp mW9gQXV371YPayEJk4yexkBBE8QAOqdEa5wyZHfFneGQMVwv7D8cgNeQXZ9dTAxF jgOWm9+iQ38BbLWY+dY9oCWcJ16Net5NfwK+kS7hl2IO4W8h0WlJGiyMBxkODfTZ s07rHbrP5Lt9C+R6tpqqGizWaEG7Nbuj036l4cneiBpGClzIctvGmjS4ikUuntly RWCGY2yMU2wgMm9PR5jFLhceT9zP6a9TcDeElmsj5y206Gp55fOwmnb3S3fRFu5L yChUDyikVzxglbCMP2bLGbLGDvCxvBDuUXZ2Nq9Ffot1z62O1rqRuiG34wm/Tldt 5U0WxV/P19jQQNvww7EECxzkj7GQcG5oaRCwLPa1+BBBaSHMcIUCktHvuakuCNjW 9OGr6+Br7KsYB+FpyNfkZE2fyr/X7upn5Lgo8WkFsm+M9GffWVThXHUUyWLiHOnQ 1wDfr4zt+15YHo1KYp2iieXCKnE9hRjl5qWz9Q1qZD8aXRmtsV0SvwMT79sukKBD 8zU3pJuoLCftTty3yvfmglWdEcm8FMSpBQL4m2twjoN+WnlksJfG9Ee6+5ihb7SL RDCLIslqcVRpAgMBAAGjggJmMIICYjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFKVl Xx0vIHbRxggWwCrxyo+iny/bMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd3d3Lmdpb3JnaWEub3Jn MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBgYKKwYBBAHWeQIEAgSB 9wSB9ADyAHcAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFuxgVo DgAABAMASDBGAiEArkGp1s03CqspUGx0pg9rVO0CU5TxnZDGAW4YkYXQenMCIQDE J3cbk/W3eYQdBrLYbFkIOKdiL2ZruX5CkEGMheC5gQB3AAe3XBvlfWj/8bDGHSMV x7rmV3xXlLdq7rxhOhpp06IcAAABbsYFaAkAAAQDAEgwRgIhAIosOcAZQ1e08UUf V6FPFS/5y0SNH+oKySTbcHUi+S1uAiEAk1SIeIvF1RwQx4wte+Y/F8ENdNYUdNkE CDKSBpuirYcwDQYJKoZIhvcNAQELBQADggEBAGWZguOagkc+XkXDcoIVJYIn36tM UHMdGJFsenAHi0OsvZpYWGJgumfkAg33ZTzpDeJp4avNkSY2Hro9XE4TB+ZXrP/s EV8A2FH8VvfsmB6MYGPB7k/y1FYktCiYVyh+DsUYYSlhJpPazrS7TcW9YV5ARwqr ClwGBTOIrMzcZsYMRhL3dVdp1urVc2a6MOHtxpiH4AnXZhIYdxTlcIfScuh2B4lD q3WE4oC6bh4x2LaFgeY5u7H8ae4MNPwvlBZK2V5JB1z0CvAQayG5XIF37Emk7Diu NMV5rhlosWgoHxEbifC7c4ev7+hlolArN12JUMeeUZREZ9ZM+nBS9yrDBrU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAl9ym0EMlqehEUyjIT3Qc fXZ4YaU2qv45Ebmoueql4wwXN/94WzLYC7da/gQIQOxDvm7YcY1vVITGFvh0T8O5 iujhAbKU06mZb2BBdXfvVg9rIQmTjJ7GQEETxAA6p0RrnDJkd8Wd4ZAxXC/sPxyA 15Bdn11MDEWOA5ab36JDfwFstZj51j2gJZwnXo163k1/Ar6RLuGXYg7hbyHRaUka LIwHGQ4N9NmzTusdus/ku30L5Hq2mqoaLNZoQbs1u6PTfqXhyd6IGkYKXMhy28aa NLiKRS6e2XJFYIZjbIxTbCAyb09HmMUuFx5P3M/pr1NwN4SWayPnLbToannl87Ca dvdLd9EW7kvIKFQPKKRXPGCVsIw/ZssZssYO8LG8EO5RdnY2r0V+i3XPrY7WupG6 IbfjCb9OV23lTRbFX8/X2NBA2/DDsQQLHOSPsZBwbmhpELAs9rX4EEFpIcxwhQKS 0e+5qS4I2Nb04avr4GvsqxgH4WnI1+RkTZ/Kv9fu6mfkuCjxaQWyb4z0Z99ZVOFc dRTJYuIc6dDXAN+vjO37XlgejUpinaKJ5cIqcT2FGOXmpbP1DWpkPxpdGa2xXRK/ AxPv2y6QoEPzNTekm6gsJ+1O3LfK9+aCVZ0RybwUxKkFAviba3COg35aeWSwl8b0 R7r7mKFvtItEMIsiyWpxVGkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 309195370244336233338997281157806540086451 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-02 08:51:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-01 08:51:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.giorgia.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 619542582605342875274775461561216838957442468598054856551872909698556210602853723985228991079578456141024418646855800970686439818128380712486786050019114772451320816206570838474864196352590272394267658929750376837811923713137799760059874746395900364684927237993024704935916076684075175340280007929698163944403031522027569380248167099144904432338129789966715228927416636841298775868044360860356492183091419413877401342261262495242252157080818804054067685460683953766609265760099811109839814093955148464018801888422085015369063617741318954773067720818877649435913671924038607984520371960693260052103536233198197411532799509925582950469469305939123351734147223452034649126083830310906628959536303139108320903112854651480909860646170094331648629592216738176597653482148012706019085962569100357219368452601009167000142335921589039965530685624704079072958191211348596399674646667269483655175156786023961083483917871493797700259726314898656625572394227176711524499395276655027288614822556458215408754248772985065478132395669283768633555538755703103490934229577402394157950071123108737764055260295194211807676619931984871818209216469798836596960983406989170400307952940755624906081602970407489332493792542310611000744329359962643183023772777 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a5655f1d2f2076d1c60816c02af1ca8fa29f2fdb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.giorgia.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016ec605680e0000040300483046022100ae41a9d6cd370aab29506c74a60f6b54ed025394f19d90c6016e189185d07a73022100c427771b93f5b779841d06b2d86c590838a7622f666bb97e4290418c85e0b98100770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016ec605680900000403004830460221008a2c39c0194357b4f1451f57a14f152ff9cb448d1fea0ac924db707522f92d6e022100935488788bc5d51c10c78c2d7be63f17c10d74d61474d904083292069ba2ad87 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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