paulogasparotto.com.br
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:65:bc:66:3b:b0:13:52:de:6d:fe:0d:be:ed:31:fa:44:a4 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=paulogasparotto.com.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:65:bc:66:3b:b0:13:52:de:6d:fe:0d:be:ed:31:fa:44:a4Serial Number (int): 295955802542394963101653812880496383378596
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c1:07:0e:62:a2:89:bc:f6:7f:ef:14:8f:7f:89:fb:c8:75:45:45:49
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 70:3d:74:bb:dd:c2:3e:bb:e9:47:9d:0f:8a:94:d9:d5:2a:a2:3e:8b
Fingerprint (sha256): c3:80:50:69:40:15:6e:55:f8:07:d8:e7:cc:50:65:fa:68:85:b5:13:36:28:c0:c5:6d:5d:c4:3f:b4:18:32:6f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate paulogasparotto.com.br
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for paulogasparotto.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
Other certificates including the domain name paulogasparotto.com.br
(limited to 100 certificates)
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
www.paulogasparotto.com.br
Certificate
The complete raw certificate details for paulogasparotto.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgISA2W8ZjuwE1Lebf4Nvu0x+kSkMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MTgwNTE4NDdaFw0x OTA4MTYwNTE4NDdaMCExHzAdBgNVBAMTFnBhdWxvZ2FzcGFyb3R0by5jb20uYnIw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4FRxk5T9sMNSUY47Hd7J+ iwS9vhf7bLEUpQJwmB8vxAXdlZtrcJk+853ze2FQiMidAiM9i8Y6nCWBiBpqD760 K53reRG7s/incJWWJs2GGw9QMo3a9VOTujaIyRc4HK2k1lot1occyKm2wSuQWWcI +/pcBAiUGmTg5LPTWSspvKQgIhMDRysxnkflb5RywVM0zWxtPpjMOzrpkhYiL9ec w6PyAQ0BN068Arpk3rqPoX66RXTA8A++jHijFylpgoX5hf0oJGhL9nZpuzQjOson m2Crv1OZVRAtWJ3Rj0MDiTeGfBV28v1B2IuEA1tzjbuFieuwNEJV3MPnaG03x02P AgMBAAGjggKHMIICgzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFMEHDmKiibz2f+8U j3+J+8h1RUVJMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsG AQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNl bmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNl bmNyeXB0Lm9yZy8wPQYDVR0RBDYwNIIWcGF1bG9nYXNwYXJvdHRvLmNvbS5icoIa d3d3LnBhdWxvZ2FzcGFyb3R0by5jb20uYnIwTAYDVR0gBEUwQzAIBgZngQwBAgEw NwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5j cnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgB0ftqDMa0zEJEhnM4l T0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWrJl8VaAAAEAwBHMEUCIHxvxnuz9NU/VbRB uVCIYsFNcDsKXl7UW42U3IrFkLJfAiEAg7i6ybZZywbxgVVu/7+pum+4IeCrPhG3 HrIiD+zjZc0AdgBj8tvN6DvMLM8LcoQnV2szpI1hd4+9daY4scdoVEvYjQAAAWrJ l8V3AAAEAwBHMEUCIQDP90neukZB9T1yp+FEHtF3I6YRtNBNR3FPANgMIiQDiAIg S6PYmI1wncTufx5T98aha0OYiIQ8oUS5YosEKi1efW4wDQYJKoZIhvcNAQELBQAD ggEBAGB1P6LGoSUQg6FmHjXkLGuhaI1H6dvet4xeNYi6+XOSuGsomaJzYrqp1GhO itRNKyzVJq7Q92OGvT4Ehckbn4gBQ4ouFV5dfgN2fPulezthZtihfz39/aEIdC8G w8P2NvhcUwymBRp2bvd9er/o6X9Ju+EFDCgfdhC29uvWayjclvpOi5cs2rbxrpdr IkaCd4l7p3LhTz7nF23tJAPpSK75e++8t79ewoc6r3j9kRNzESfPOsTuv0PtLIBj uxfpnsDEmgn7CDTWQx7jxXyRi/hbZ6oj773wsOD8IUmEXlucUncLjttxfVuYm2KD c1Tl5vKNIuSVFJumNe5wJvlG0j8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBUcZOU/bDDUlGOOx3ey fosEvb4X+2yxFKUCcJgfL8QF3ZWba3CZPvOd83thUIjInQIjPYvGOpwlgYgaag++ tCud63kRu7P4p3CVlibNhhsPUDKN2vVTk7o2iMkXOBytpNZaLdaHHMiptsErkFln CPv6XAQIlBpk4OSz01krKbykICITA0crMZ5H5W+UcsFTNM1sbT6YzDs66ZIWIi/X nMOj8gENATdOvAK6ZN66j6F+ukV0wPAPvox4oxcpaYKF+YX9KCRoS/Z2abs0IzrK J5tgq79TmVUQLVid0Y9DA4k3hnwVdvL9QdiLhANbc427hYnrsDRCVdzD52htN8dN jwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 295955802542394963101653812880496383378596 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-18 05:18:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-16 05:18:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'paulogasparotto.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23238258293708727452121010381875701247895164943872584394814297444195981000327573191040413576927771074248596100078357171290891078386209494774653055320275070049543434248610507221288859950061305648448628003583174495278275041829591443589153568103532029891511627373814409288532185381947989001210423037294275308391909612932416179215834498809264299585774184873990880985310832613335555572782545383802722689073564761627158383154042553892124679690303238449974516043255364046816711411727216983982894333047299204100882622686306423569092525078589680027144824467504467563322216072716764293530552124818053399346920675029265198566799 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c1070e62a289bcf67fef148f7f89fbc875454549 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paulogasparotto.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.paulogasparotto.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016ac997c55a000004030047304502207c6fc67bb3f4d53f55b441b9508862c14d703b0a5e5ed45b8d94dc8ac590b25f02210083b8bac9b659cb06f181556effbfa9ba6fb821e0ab3e11b71eb2220fece365cd00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016ac997c5770000040300473045022100cff749deba4641f53d72a7e1441ed17723a611b4d04d47714f00d80c2224038802204ba3d8988d709dc4ee7f1e53f7c6a16b439888843ca144b9628b042a2d5e7d6e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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