www.gherardo.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:52:88:cb:4b:1e:3d:b9:9d:f5:ab:7a:0b:d8:c1:00:7e:e8 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.gherardo.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:52:88:cb:4b:1e:3d:b9:9d:f5:ab:7a:0b:d8:c1:00:7e:e8
Serial Number (int): 289421842450063393204714214757541997477608
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 4e:31:c7:4c:13:5b:de:84:b2:e9:da:bc:a4:24:8c:58:26:60:6d:58
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): d3:1b:4b:b7:35:bf:1c:54:a3:c2:31:88:c4:bc:5c:c6:9b:5f:f0:12
Fingerprint (sha256): c5:a6:14:e2:e4:0d:b6:00:c8:ff:aa:36:d8:72:7f:6e:99:26:85:42:f8:18:2a:98:72:61:1a:4c:7c:2d:48:c0

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.gherardo.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.gherardo.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.gherardo.org

Other certificates including the domain name gherardo.org

(limited to 100 certificates)
gherardo.org
gherardo.org
gherardo.org
www.gherardo.org
gherardo.org
gherardo.org
www.gherardo.org
pbfa.ca
eculi.com
manipolazionementale.org
www.gherardo.org
www.gherardo.org
gherardo.org
gherardo.org
www.gherardo.org

Certificate

The complete raw certificate details for www.gherardo.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 289421842450063393204714214757541997477608
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-03 04:01:17 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-03 04:01:17 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.gherardo.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 846021305189119521715074805236500413957131238195252197444644220269925354914107708315202791520625575127434091159461378820420926127345982402748720232638217914823247825788361321599072070736490968748934027255982385838944676451399249213306973243216741924783229906443806173504801227101723669275235879445782904251461926958549588564709264760073968790627484824431725411265100754244834070437540167894994020814491493986962788132245929766822935966055639129887781954529376687982910347804247168804240597136291054487405659896613910662856512635673542635125230475640075096505024861408585096349411704636925536515655435285669577224409010193755639401423279548036650583900545578920786651132185668613915070512440856968129338759014492822320826118973913215769321208324455652358384515878348704003568914056584327981527055115608831260950987581499625626364935865266960417599166191398771917391656206999332605048132039432318105563792132840412072174957390508054856163275130035068831431394525952107003252862553235190995133897816174491235438880851506794231270205705541422626745823915722423556358344825115260838549109307121915109831530599153620572309881608413687966995540390527974504771336872438537064801638123038302363325696161468458121820041062781037151123629171849
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							4e31c74c135bde84b2e9dabca4248c5826606d58
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gherardo.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f20077005ea773f9df56c0e7b536487dd049e0327a919a0c84a11212841875968171455800000170096c9a8f0000040300483046022100dd99ea2185857ae2bbc041ba03f228a9735d14b72956cf01ec6a3c3e807c48d8022100ee8545cd97517ca192cce6010ff5d40ce7e157d73a9242edeadb5f7ea244b65000770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c00000170096c9aad0000040300483046022100de691d0eba6d5b7c5948b9cc7a0ccda08719ba6bbf11334a9235568571b36ef6022100fd3d86836c24c63899ff0caae35850cf5c2e12255a4b4a510d072f51e0729b9b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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