alaggia.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:4d:de:1d:38:99:1e:f5:65:55:f1:07:45:f5:cb:0f:65:1e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=alaggia.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:4d:de:1d:38:99:1e:f5:65:55:f1:07:45:f5:cb:0f:65:1eSerial Number (int): 287833840387812578345178205104197197587742
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: de:b6:7f:96:b5:82:ef:92:5b:98:ce:4d:33:10:aa:7e:40:31:be:f4
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d3:14:0d:e7:5e:d2:6b:96:a9:27:d5:f4:9a:d9:fa:45:0d:df:27:b6
Fingerprint (sha256): c8:42:8f:e3:d4:6d:5a:f3:b8:11:cc:46:d4:a3:7f:ef:52:96:69:bf:12:d5:3c:a4:ad:0f:dc:a2:45:97:c4:af
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate alaggia.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for alaggia.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
alaggia.com
Other certificates including the domain name alaggia.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for alaggia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTTCCBTWgAwIBAgISA03eHTiZHvVlVfEHRfXLD2UeMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMDUwNDIyNTNaFw0x OTA2MDMwNDIyNTNaMBYxFDASBgNVBAMTC2FsYWdnaWEuY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAwFKJlVh5ZdCDHJl+rRlGArA5CrarKCPKGKT9 nZsK4l6+F/xpFR6ZFfYQvMnNHEVFdcOl8A0eWnej8Nl1MMdYbTvDYULVi5/ntHk6 ARpg0gaWVvuIhfhdxuUEnNOKMmCWqJa4RkHGKFNGS5kiCA/tL2ow3Qx9apv/t8fB KBy0JnKe7eHIBKgs0H74XNRbLZsl8h7Xa8RZyqhKOke4DRL/xra7p/rdZ2jXj1Ss ZR/lYevzlKLnH2yV5e56IAC3RR9j4oZYwcGa9zeQSYz9ClVLk6gcpiZtXPv3ZUqZ 9GeyUX0VeGf4MkmJmTxas2lmmYI1WBiS0/UMTz3P5sk2ujQvcVToVXPkG7ENwV/l KjfptbqfteQISG55u5swI8tJpT8AuyNwfB48hia9h+lcZo0VNT6++4x9oB+P5NT7 CbBDXQQKkjwWe+mPmxsXVWfAHeviYdFheVsLe7kpBqohLZfC83iNmuaMDG4l2ppO Bt3ZLxGJ02qVCReNBhDK4XC8iJ8vbDwEP5cVkuNaX48SBLiboJALkIJOhN1bR+9N mdq/zN/Cp/7z2DdHMfY+HwhxsWY5SMlWFOmZAyr0Q5EyFchTsDt9bTxqHC4acXJP ND+Aiitx8Fruw1bArSw7zILWna6CozX6NdUx4m1r7YpnRToT2jdGuG6BylVmxA6q SqQVm50CAwEAAaOCAl8wggJbMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU3rZ/lrWC 75JbmM5NMxCqfkAxvvQwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAWBgNVHREEDzANggthbGFnZ2lhLmNvbTBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2 AHR+2oMxrTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABaUxN/e8AAAQDAEcw RQIgeYhvuPU9MHdK1oQtx9u2Jw6PdOlhzkXWgd8fc7pguNgCIQCslRAcPjl/M0XN 5udBoE++hdZRbNa58V1jhhn5qIOAVQB1ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLc pMMM9OVFR/R4AAABaUxN/AEAAAQDAEYwRAIgCMCdLS65tOGymFcw5Xuxg0okLJkV 4vDJOBg3ZV3UhiMCIBpn88bLQDXqtzN/Evv0P0lO0dKTyhapHZGIEpm8CKUWMA0G CSqGSIb3DQEBCwUAA4IBAQAcHJckTuWAzVaHy3YjRXYgBX2gOUR3PqSz7Cihpm1H llbtTVHiuCSmMlmeXfVsvTwyQVD5ZNGZX17cv6mnE0d6Fxcu1HQAM3oJToUySrt8 Ty+CxcP4H4dogbvtpI88UfWXRQ7THsSfFgHxghc+5zgoYJ4+ia/CscjOPJMRmyct XyzOQ86+EItK3YN3RiNrSc5TuDb14oZWeU/UNlRo/oEsdlK9reKKOAxnhoCEvAAx TgTH3jITK5gCO9bAYc0RJugJzn8oUB+3vEMEJXUPE5CDkSCq1bU1tFxR8sMrrLM9 ccUYLwJMe6vcBAoYjE6BQdGidynpLUFy9lqvR063Kr0x -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwFKJlVh5ZdCDHJl+rRlG ArA5CrarKCPKGKT9nZsK4l6+F/xpFR6ZFfYQvMnNHEVFdcOl8A0eWnej8Nl1MMdY bTvDYULVi5/ntHk6ARpg0gaWVvuIhfhdxuUEnNOKMmCWqJa4RkHGKFNGS5kiCA/t L2ow3Qx9apv/t8fBKBy0JnKe7eHIBKgs0H74XNRbLZsl8h7Xa8RZyqhKOke4DRL/ xra7p/rdZ2jXj1SsZR/lYevzlKLnH2yV5e56IAC3RR9j4oZYwcGa9zeQSYz9ClVL k6gcpiZtXPv3ZUqZ9GeyUX0VeGf4MkmJmTxas2lmmYI1WBiS0/UMTz3P5sk2ujQv cVToVXPkG7ENwV/lKjfptbqfteQISG55u5swI8tJpT8AuyNwfB48hia9h+lcZo0V NT6++4x9oB+P5NT7CbBDXQQKkjwWe+mPmxsXVWfAHeviYdFheVsLe7kpBqohLZfC 83iNmuaMDG4l2ppOBt3ZLxGJ02qVCReNBhDK4XC8iJ8vbDwEP5cVkuNaX48SBLib oJALkIJOhN1bR+9Nmdq/zN/Cp/7z2DdHMfY+HwhxsWY5SMlWFOmZAyr0Q5EyFchT sDt9bTxqHC4acXJPND+Aiitx8Fruw1bArSw7zILWna6CozX6NdUx4m1r7YpnRToT 2jdGuG6BylVmxA6qSqQVm50CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 287833840387812578345178205104197197587742 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-05 04:22:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-03 04:22:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'alaggia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 784606986674810229337021753105337281496125545921905867394752490124059560857374093179824132818150499196759560089217393937373295664236235249213837284291136137796972517389638607415938008944096107007465734904859718512606316442835370448700953116248013849476046038067476500166388344421192253412485135287851089854013809565002408354634508687012742210930716443589943801721601064991888505258744628997002640362014839079368500469021483053405433676957851130706659877609804929160318657846784656337550527357440772090383109924871574370632252654164991569504745841662340864785448471221040318244050573095369231297955466192062914726693613338496266752207867751944598270924027196907146453325526991275568319722054257282765751715937785165548326214649738962879697939844119037526319123766425888474466479778177168066042924056005649747639594861629794844568389403924561421011656669662657213762287747578993548916201844242381118208437024341242056407674133874985307426202804448985805218883783884499819124996575196316475971781065236571947302290637348603218588549150734765312471081939590616299497159382289686930545286726508542904157780372083201291915008298237711544151990694866759843595260429004887889005071565611635556652006386300481470146425026088866476290347473821 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) deb67f96b582ef925b98ce4d3310aa7e4031bef4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alaggia.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc56000001694c4dfdef0000040300473045022079886fb8f53d30774ad6842dc7dbb6270e8f74e961ce45d681df1f73ba60b8d8022100ac95101c3e397f3345cde6e741a04fbe85d6516cd6b9f15d638619f9a8838055007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001694c4dfc010000040300463044022008c09d2d2eb9b4e1b2985730e57bb1834a242c9915e2f0c9381837655dd4862302201a67f3c6cb4035eab7337f12fbf43f494ed1d293ca16a91d91881299bc08a516 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001c1c97244ee580cd5687cb7623457620057da03944773ea4b3ec28a1a66d479656ed4d51e2b824a632599e5df56cbd3c324150f964d1995f5edcbfa9a713477a17172ed47400337a094e85324abb7c4f2f82c5c3f81f876881bbeda48f3c51f597450ed31ec49f1601f182173ee73828609e3e89afc2b1c8ce3c93119b272d5f2cce43cebe108b4add837746236b49ce53b836f5e28656794fd4365468fe812c7652bdade28a380c67868084bc00314e04c7de32132b98023bd6c061cd1126e809ce7f28501fb7bc430425750f1390839120aad5b535b45c51f2c32bacb33d71c5182f024c7babdc040a188c4e8141d1a27729e92d4172f65aaf474eb72abd31