airoldi.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:90:2d:76:6a:45:85:78:24:f1:eb:09:2d:18:73:8c:11:ab was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=airoldi.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:90:2d:76:6a:45:85:78:24:f1:eb:09:2d:18:73:8c:11:ab
Serial Number (int): 397510234669939221601596071101117238088107
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: d7:96:59:dd:27:de:ad:31:d3:29:79:f7:94:1c:41:28:07:a7:c3:a3
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): b7:cb:7e:b2:ea:6d:e8:2b:51:ad:f5:f5:f1:72:0b:bc:1c:de:61:3f
Fingerprint (sha256): c1:04:7a:79:23:7c:b0:08:56:34:7c:6d:c2:ee:d0:0f:70:c3:ba:b6:18:b1:ca:b5:c8:73:dc:6c:9e:09:b0:12

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate airoldi.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for airoldi.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

airoldi.com

Other certificates including the domain name airoldi.com

(limited to 100 certificates)
www.airoldi.com
www.airoldi.com
airoldi.com
462.me
airoldi.com
tavolidaesterni.com
airoldi.com
airoldi.com
www.potvlog.com
dsgvo-now.de
www.airoldi.com
www.airoldi.com
airoldi.com
airoldi.com
airoldi.com
www.airoldi.com
airoldi.com

Certificate

The complete raw certificate details for airoldi.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 397510234669939221601596071101117238088107
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-11 12:46:36 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-10 12:46:36 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'airoldi.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 790848262482375502967286856763207443691425672494516562502199059506597660740811636432627237771033932295397484407613118690193848561953098754942625459652698795593604376962144181941634999157210096957688719751172788556220221993622778176308809027047876071595834194788678859839498534501810191142279297665457177171103932282353663570005614411200985143862665522720425154733087311218092021571167707222091091452928150300645517131569521459744770807515456140309203631451306007472663057823697779395432859514352500826114748797431922743521894976440493649206595411749493847703786999319559391431353312851270250987881505694848006164255342378173614297125501654196024823876845755345351754036616994318002695003997941497765040431072960662390691792818093680882548938951016251777018859985683985054493797297076788448800322044686056715781497226567506329989636490747339673060965935478958388681540008156701419812240947388322063018189016778387959049851265922485302354304894266988170290644928374182422870128888298874903270749430641816266552347221384033200573657337902763678337656253708344694729079581451748006068677359338750800193093687898169741738985541876490282406700791285784728072079441875399044042521932652375978138475994347770288893909857715327372414886709357
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d79659dd27dead31d32979f7941c412807a7c3a3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'airoldi.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10076005ea773f9df56c0e7b536487dd049e0327a919a0c84a11212841875968171455800000171697dfb090000040300473045022100b277ae6b865d10dc8b5d219838d24f7753d0271b70f9ffa0a8bf61426c6d42f902200aef0488e7629829f33885caf1e62f429e84d9cbabbb22fb121576c074cf3a3e007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000171697dfaf70000040300483046022100ba7723c809e1552514adf6ef5c968ed666307cb58d468bbfd81bc2216e3309ee022100f011e46b93bd2beb89f95824f0e91e6537695853702abbd719ed8e0590640d56
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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