www.castelgiuliano.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:e3:d9:43:4c:78:27:73:ab:1d:c8:07:f1:de:60:15:53:23 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.castelgiuliano.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e3:d9:43:4c:78:27:73:ab:1d:c8:07:f1:de:60:15:53:23Serial Number (int): 338869746996291338853093970845112720511779
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8a:55:7f:51:7f:93:e4:b2:c1:9d:b5:42:0b:96:de:38:76:17:33:e3
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 4b:12:9f:d7:f2:34:12:27:05:17:7e:3a:ab:97:34:c0:02:41:9d:9b
Fingerprint (sha256): c3:d3:b9:2f:7a:d5:4f:54:54:86:82:dd:a8:be:e7:a0:9a:ca:b9:98:bc:ef:40:d6:fe:f8:cc:5e:15:4c:23:09
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.castelgiuliano.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.castelgiuliano.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.castelgiuliano.com
Other certificates including the domain name castelgiuliano.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.castelgiuliano.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZDCCBUygAwIBAgISA+PZQ0x4J3OrHcgH8d5gFVMjMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjIxOTQzMzBaFw0x OTA2MjAxOTQzMzBaMCExHzAdBgNVBAMTFnd3dy5jYXN0ZWxnaXVsaWFuby5jb20w ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCswPf2H+/UYKMEy0h0bgHT bDxjpu241SvEw8QvK1Ao+fsFfX8bUEXI+8bQtTUbg51h96FJeGJsiERDdCnT1RBn VPdJ16iSfsnSdYOBOMwe/gdVSgUrW2LN/rYG8IaVzcZcw7sTLfIfkyWX2DZtVN1n sWJYaAsoaad4870XslyTCtPCQ31fEg+sxDMnm0jsrzW1KWeesGPCVJkoTFL5p4yS LlVvFzT8p+THhALKLsbYdegXReJMC5GAB/qlQIC4932qb3QGmR3oJvRC12ZsjV1K PS0fJ0mJU7nbZxvwJcnnIi9t8J3YzHw+6hNM82cnIYe0+vtUdiemyfSLBJdGXiSn PM8PUsNZ1mmGHJ/LJ7gMg763jxFsn2FseEUwhNlxKaxbYFGgVA8GRkCY97R1qtJs R/ur17wl166r5r/WW5CjU/CO6RoBMAsq5pEUZwoEfVKwIZONlHJcpspRZFXC4fSf lzqG3/u1D3UrDIdRhmAPj91axke50CzOw8bgJx5ZlpJyUlmyKqkjM7xmvGYTOqCv sK5GBvk0fqc14X/M4db+Mn2E2rSd6zOkLG78NSTCrmtFN2LR2l/3pM0pgVE7suVZ yAp/vjVdixgyXxek4x8JyVUi29p6ry2aQzFB14TXUhv5EgVbIuwQFCDKDXmTG7l8 krr6v2XdoZwxx2q7O8iEKQIDAQABo4ICazCCAmcwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBSKVX9Rf5PkssGdtUILlt44dhcz4zAfBgNVHSMEGDAWgBSoSmpjBH3duubR ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEGA1UdEQQaMBiCFnd3dy5jYXN0 ZWxnaXVsaWFuby5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEE BgorBgEEAdZ5AgQCBIH1BIHyAPAAdwDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8o kwGd3fHb/gAAAWmnJPUkAAAEAwBIMEYCIQCUWZOAaX8Nnh7sYolaTlH9ERIZvq5U hjZkY8vhWUPB4wIhAJRguYGP1qAr1ZEopZDseH7YSVjXxpiwIzIEVPDqwqPMAHUA Y/Lbzeg7zCzPC3KEJ1drM6SNYXePvXWmOLHHaFRL2I0AAAFppyT1JQAABAMARjBE AiEAk6GyWCdQJ3NaGf4CQQ8Jp9Q7o3AVaXgq1T5SDFYr2gsCHyUJhaioL+jJzc4i CtOLCfc/beAhydhHdBJ9DUcjN2MwDQYJKoZIhvcNAQELBQADggEBAFfV6vZJBPhW 6D4HQ0qrOEhbwCiBln1utKZ8Urdh6i/Sx61J2FAm+OFYKV+i/GQ9YUqFk9MwBnuA P7lZfBrUeWRrU9TG1YHaiz7xzrj3Xs6FCZMLRkc3/hNm4XE4egsxBVFDnbqzwhXd L/B57+7Navi4MbUVMaJwdfN/T+J/w189YuY622NzuVlURxKnuM+/wTTYPsrSWeo3 fXP3r8kPnEgzIGLAWPbLFwZmDdncVzruJsk938ynP+Ips4HIKZH97DKUF+1ATScr ypm+uEYkSL2jDvrpAzB8gy7uFnFYRpFQQl0RFZhskY4rV4GRMse2yKXGqgrkhMFC m35Pti/mW+o= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArMD39h/v1GCjBMtIdG4B 02w8Y6btuNUrxMPELytQKPn7BX1/G1BFyPvG0LU1G4OdYfehSXhibIhEQ3Qp09UQ Z1T3Sdeokn7J0nWDgTjMHv4HVUoFK1tizf62BvCGlc3GXMO7Ey3yH5Mll9g2bVTd Z7FiWGgLKGmnePO9F7JckwrTwkN9XxIPrMQzJ5tI7K81tSlnnrBjwlSZKExS+aeM ki5Vbxc0/Kfkx4QCyi7G2HXoF0XiTAuRgAf6pUCAuPd9qm90Bpkd6Cb0QtdmbI1d Sj0tHydJiVO522cb8CXJ5yIvbfCd2Mx8PuoTTPNnJyGHtPr7VHYnpsn0iwSXRl4k pzzPD1LDWdZphhyfyye4DIO+t48RbJ9hbHhFMITZcSmsW2BRoFQPBkZAmPe0darS bEf7q9e8Jdeuq+a/1luQo1PwjukaATALKuaRFGcKBH1SsCGTjZRyXKbKUWRVwuH0 n5c6ht/7tQ91KwyHUYZgD4/dWsZHudAszsPG4CceWZaSclJZsiqpIzO8ZrxmEzqg r7CuRgb5NH6nNeF/zOHW/jJ9hNq0neszpCxu/DUkwq5rRTdi0dpf96TNKYFRO7Ll WcgKf741XYsYMl8XpOMfCclVItvaeq8tmkMxQdeE11Ib+RIFWyLsEBQgyg15kxu5 fJK6+r9l3aGcMcdquzvIhCkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 338869746996291338853093970845112720511779 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-22 19:43:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-20 19:43:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.castelgiuliano.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 704773948455369730501750268235828030329163403122362176872339150140340020993015816197106172697470265746450865826335755089558911024693130163938852526482672290700284600399506075892778048564665431860403678521286720089626883864182193569083686886171169131135740878138870051653949126009862214297829733612112268279570017441376112868883244530019788465669554971296639822318109687199370641701871051758276530235763942173116434337589766801863158492428719363275364843030576044380511972137541328080170078799177767884382581283955389989916939250563358550533831670592629564657889696995246853722688953291148425587433175281579552551258521386515381326265076732811847100963935760321043025435866099323375356935903594108674313355780848171198783908513263705040685656521886854829786572270432033209172732183906127903515984176117969153253040497565464383831219847434355953975918916025032084782162557619009317158958782113714674324298006153276305390359685217983299873466602469387215360525187217640242344907106503571468244883671537528039583243544698186426498432253341812385568195170957451077725180345852544593989298586060716691584605711561118993668562264260212797011977133723592026620456884167844248096585425115221969882595114871236228183585272826232955714046297129 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8a557f517f93e4b2c19db5420b96de38761733e3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.castelgiuliano.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000169a724f524000004030048304602210094599380697f0d9e1eec62895a4e51fd111219beae5486366463cbe15943c1e30221009460b9818fd6a02bd59128a590ec787ed84958d7c698b023320454f0eac2a3cc00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169a724f525000004030046304402210093a1b258275027735a19fe02410f09a7d43ba3701569782ad53e520c562bda0b021f250985a8a82fe8c9cdce220ad38b09f73f6de021c9d84774127d0d47233763 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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