gigliola.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:de:56:77:a7:b9:ee:43:e7:d6:44:aa:ed:db:92:50:29:9a was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=gigliola.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:de:56:77:a7:b9:ee:43:e7:d6:44:aa:ed:db:92:50:29:9a
Serial Number (int): 424106764076346347285076749760068093749658
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: dc:8d:18:67:a2:a3:78:f7:69:29:98:f8:70:50:c0:2c:3f:aa:35:3c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 90:4f:dd:4c:71:1e:6e:38:2f:1d:69:15:b7:c3:c4:1d:65:03:0a:b3
Fingerprint (sha256): c5:c7:58:ee:3b:f9:f6:95:a9:15:93:b1:35:69:47:84:e8:d4:aa:27:1b:93:13:42:5d:23:5b:64:79:99:1b:fa

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate gigliola.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for gigliola.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

gigliola.org

Other certificates including the domain name gigliola.org

(limited to 100 certificates)
www.gigliola.org
gigliola.org
gigliola.org
www.gigliola.org
www.spabuilders.co
www.gigliola.org
gigliola.org
www.gigliola.org
www.gigliola.org
www.gigliola.org
gigliola.org
gigliola.org
gigliola.org
gigliola.org
gigliola.org

Certificate

The complete raw certificate details for gigliola.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 424106764076346347285076749760068093749658
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-13 14:30:45 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-11 14:30:45 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gigliola.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 817844844327776209841378726001090877789342223146184020505600775244658265774911184368197063458985706953294051949981540109752371177070575183643883017972531960951308683265038695051914804363470743756745265668792710462979958804269996585167562393428663917652804551848602266465284458134516919971328879639381691493959838268289670226211711026263076107241929263819856631440259150159604346272645196254612203821152642779739813240741651536098755617963518362229912518168075310600141616629605276327742600409077882632471104213485564709057171724477913817900737408680113487440273627363267122852528773062898205088214771478103326338502367421036626905119952152261987259296778518767810269660109942188394031898146826600043324398474490795641757957135808920821780038384815838035485165306118928815545780711985954683300900009102181625839209698116931456694543494707704887843155541872098617069990914505662099415708215749429244872127722033847108574401855400242747338528326682092348588491979610517153097896212472506200178500464034668552633419857382488197766116402166447185583732940564941431878103257195309995634110857275378021766933054579636622063251015023272822462585746728044780261873555786443145200170899648340889017527489154988698133303909218325456157262680229
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							dc8d1867a2a378f7692998f87050c02c3faa353c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gigliola.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170d484eafc000004030047304502206505b1dcfb4a943340cdb7a5197a927b97b917aeefd73e16134de9eb00893ea1022100d4f60bff928c48b430cda0a7d219beabe6d47678bde5a4270b2b7962a4075a9c0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d91300000170d484eb3200000403004730450220579824f08059aacd4337c7521f4c88797dbd6bfd0b9da761c2cf9743874ec72c022100aa4b7e6b41f94b05ebe44b98eb84caa9358f1296ec9e388f14f0953b5ae2198c
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		004454a55ae647ac57f091cb10bba5520b3a03a7b62fc1560ca597c696e092aa1de5327face3d12c1823c28d0070ae6623904387ba3a73cfd4a1b0e81929ae08f42095ab7e11874142159185aa0de6052a54647774ba64f292c65c6d04f8bf4e350be3606adbe63b69f5313d2980bbe9f88e196b9b46236a34bd9219234f8d5dfca37d3542e0ff4a8c72cee2a028a6003880c82705742b9f58b380a13fb22cfca8f027b2a60a9076d0c09c3437da8b0d05dc6931e408392f9b5717e1bdb1ffdbfd6876c1144a702d241287c4237492661bdbc18c2afbcc667c37aea85c2e928e86bfd3504eb6997eb568d12a60e30f3c117d9e5d9d7baabd8e7c420647278ce471