santantimo.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:e6:ec:a2:77:d5:9e:2b:3f:74:33:fe:f6:a3:d3:b2:72:db was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=santantimo.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e6:ec:a2:77:d5:9e:2b:3f:74:33:fe:f6:a3:d3:b2:72:dbSerial Number (int): 339916343576724201689630736367058429309659
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c0:bb:ad:e3:a0:fc:79:ee:4e:cd:f7:11:e8:15:66:95:70:61:47:a5
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ae:62:1f:5b:6d:1f:a4:8f:64:92:cc:9c:7e:49:47:95:15:28:51:3a
Fingerprint (sha256): c6:a1:55:e2:0e:96:5f:68:cd:3e:50:16:29:38:bc:6f:8a:a8:8b:0c:4f:d9:56:f8:34:67:5e:37:97:68:54:11
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate santantimo.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for santantimo.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
santantimo.org
Other certificates including the domain name santantimo.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for santantimo.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVDCCBTygAwIBAgISA+bsonfVnis/dDP+9qPTsnLbMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjgwMTMyNTJaFw0x OTA4MjYwMTMyNTJaMBkxFzAVBgNVBAMTDnNhbnRhbnRpbW8ub3JnMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAlW+VdlTKW8Wfg5/wfNTxOSKVzQz5X5Np qibOmb/cQYd0ark8+5JLYYRZYKoe2ZhqMUtQ+26YuZkmgrUqgAaa9s47ScE9Q2o7 ZKDFEktVOiSMwFq48xOGEwcdfVLcfRg92VJkkKpSNl03hiS3qLN330fEcLCZsMLT Ui6SR3YAc0o7R3oyT3Z2Nyt5P5JTgyUGPCYSPh1PaQ8uhl+5O7h5uKoGRDb80oNB EKsNb/C2k9/ocpgEV5z92g5Bg15so0epb0RB8HsZno4WKKX7fUyWffU/G4BhEH6b /o90IZzsnVuqzLEkrggIL0co8EykghfFulDpxmlq1pVJXcG5s8SYUBPy9IlJ3fE5 Afz4hwEg8fo92rkBd83m+bCM3XTC3K/jUyZ7ye6x0b4z21NoWmg7Ikt4PlpIt5Ig cujs2H991GYfR/BkhbShueIBS0IrVhxm0lTxycHVbkpR7IGwV74k8zV4A4iNiXWV iqERVhxsdh17e80k6opp37xPgeY16CTCWMnGsmPNqEi8Qef2CTdekDQAlc4Wv5VD 7pXu8mRlfK7558TK6E5YCTEQhhdk5oG2Q5AxGd/aUs5MVXVRtXGyjWLVVF40jb6G WlbjOqDuDTl9cbl/OVlQUhM5+LPn7r28oH/LG6CzKc93FDJ2acfWd9spwlFjeUFo gh36XM4N+tsCAwEAAaOCAmMwggJfMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUwLut 46D8ee5OzfcR6BVmlXBhR6UwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg5zYW50YW50aW1vLm9yZzBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUE gfIA8AB2AHR+2oMxrTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABavxIh9sA AAQDAEcwRQIgJphfnmhPp24HuU/+0xbeRrpzeMoRGUd4xw+8GhuyRrcCIQCQHccN v2rQMEZDmqzqZQ/rr3It75MeAgfT4fumN53Q7QB2ACk8UZZUyDlluqpQ/FgH1Ldv v1h6KXLcpMMM9OVFR/R4AAABavxIh8gAAAQDAEcwRQIhALfgXYpUVAvQG9lDr0Kf sY5EUvMscy2RM7SVSRAJFlfdAiAw4oZO1R0w/gyIF/BLwyaQdpXpCcDIfY6Iijgl 7WT1sjANBgkqhkiG9w0BAQsFAAOCAQEAc1+Z7d/H+tDINkZYzr2RZiP6oOp4pZay Qq5rsNkMzt317z6/5hQKJWIiXqdzyrHxufzaWWxgYwVJmsuRZ2My0gCzDfCJ7rhS 18t844C/LpdY7nDqOu1PpmaPp1Lem4I84Pk0ear8B4e4794zyRgPjbwBFcGroRcT gWQlewDE3i76PnAxo1gLB8A/qBkOihHKOsyDgqQvPMlBjbwCy70cwqgeOxLGZfOq gOxJCJc55l2WfYW6nQ8nnmLftpIWF8lxt8j6G0hpYHRUhEdFYsl+3a401Rc06OcA 7W62GtiBgLsqVDRHKwcTVkZ7w/usFeAjtVo1W4KhBuITC7ZMDhQe0g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAlW+VdlTKW8Wfg5/wfNTx OSKVzQz5X5NpqibOmb/cQYd0ark8+5JLYYRZYKoe2ZhqMUtQ+26YuZkmgrUqgAaa 9s47ScE9Q2o7ZKDFEktVOiSMwFq48xOGEwcdfVLcfRg92VJkkKpSNl03hiS3qLN3 30fEcLCZsMLTUi6SR3YAc0o7R3oyT3Z2Nyt5P5JTgyUGPCYSPh1PaQ8uhl+5O7h5 uKoGRDb80oNBEKsNb/C2k9/ocpgEV5z92g5Bg15so0epb0RB8HsZno4WKKX7fUyW ffU/G4BhEH6b/o90IZzsnVuqzLEkrggIL0co8EykghfFulDpxmlq1pVJXcG5s8SY UBPy9IlJ3fE5Afz4hwEg8fo92rkBd83m+bCM3XTC3K/jUyZ7ye6x0b4z21NoWmg7 Ikt4PlpIt5Igcujs2H991GYfR/BkhbShueIBS0IrVhxm0lTxycHVbkpR7IGwV74k 8zV4A4iNiXWViqERVhxsdh17e80k6opp37xPgeY16CTCWMnGsmPNqEi8Qef2CTde kDQAlc4Wv5VD7pXu8mRlfK7558TK6E5YCTEQhhdk5oG2Q5AxGd/aUs5MVXVRtXGy jWLVVF40jb6GWlbjOqDuDTl9cbl/OVlQUhM5+LPn7r28oH/LG6CzKc93FDJ2acfW d9spwlFjeUFogh36XM4N+tsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 339916343576724201689630736367058429309659 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-28 01:32:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-26 01:32:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'santantimo.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 609645178393027715621148682532163267549415586878441276732333974410635418125916133872191018655890144468139638206042988371912091632644134100207793220573351755773518210950834023575820327564154536656555891316393473656763579279688915601035238918180175304563289301339527256994624966018666265993946501762194555969100490321657042426366408273815692131861056002054337733692804417322750359854233023470992873764781935018534980994185232762145316316508614451934518959690690894654389042162771806893435524201509205776773091779736764719466829567651461287235999543881751370668876968310178082096058078115078818348821450515790047735914464820408060709575077246085338661565419460058653043157301563814717082155815110178429625539630618164288327087406593013692795577627353735374478454800546234108805757757759578752243263135636403056105575962243539892446673357600046192486440257166346072446859017229144035240233115324768019448553772389619157502740923853549112344338534117915784040967311670911104305121298611248732556178766452567852715763790297437825286358442005476331399792749366739465208023238894806239864082865998289450205738316794421796195573148409506131992054193356734125734557873701813657668106000440843750974871645751374494396799355773301800053771205339 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c0bbade3a0fc79ee4ecdf711e8156695706147a5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'santantimo.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016afc4887db0000040300473045022026985f9e684fa76e07b94ffed316de46ba7378ca11194778c70fbc1a1bb246b7022100901dc70dbf6ad03046439aacea650febaf722def931e0207d3e1fba6379dd0ed007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016afc4887c80000040300473045022100b7e05d8a54540bd01bd943af429fb18e4452f32c732d9133b4954910091657dd022030e2864ed51d30fe0c8817f04bc326907695e909c0c87d8e888a3825ed64f5b2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00735f99eddfc7fad0c8364658cebd916623faa0ea78a596b242ae6bb0d90cceddf5ef3ebfe6140a2562225ea773cab1f1b9fcda596c606305499acb91676332d200b30df089eeb852d7cb7ce380bf2e9758ee70ea3aed4fa6668fa752de9b823ce0f93479aafc0787b8efde33c9180f8dbc0115c1aba117138164257b00c4de2efa3e7031a3580b07c03fa8190e8a11ca3acc8382a42f3cc9418dbc02cbbd1cc2a81e3b12c665f3aa80ec49089739e65d967d85ba9d0f279e62dfb6921617c971b7c8fa1b486960745484474562c97eddae34d51734e8e700ed6eb61ad88180bb2a5434472b071356467bc3fbac15e023b55a355b82a106e2130bb64c0e141ed2