santantimo.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:fc:d3:69:9d:44:93:11:fa:8b:6d:18:bf:da:19:28:94:2f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=santantimo.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fc:d3:69:9d:44:93:11:fa:8b:6d:18:bf:da:19:28:94:2fSerial Number (int): 347369029747409334994354280649865202013231
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 6f:d9:8f:4a:25:1a:50:1a:2e:57:a9:29:64:a1:e4:4a:c6:80:c1:11
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 94:47:91:ce:cd:0d:aa:c8:fa:d0:81:fa:74:5c:9b:52:f7:d6:29:ec
Fingerprint (sha256): cc:fa:3a:e4:33:3e:33:39:c0:67:ee:15:25:87:25:ec:c2:02:67:82:71:7e:67:04:f4:66:b7:6f:c8:17:ed:2f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate santantimo.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for santantimo.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
santantimo.org
Other certificates including the domain name santantimo.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for santantimo.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVTCCBT2gAwIBAgISA/zTaZ1EkxH6i20Yv9oZKJQvMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjcxNjMzNTNaFw0x OTEwMjUxNjMzNTNaMBkxFzAVBgNVBAMTDnNhbnRhbnRpbW8ub3JnMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAl4hrAAt+Rvscp9T8VKzMEaxdR50MyhwC 28gUAAmpFkwxCPOws4EvisYbKV9D6FSsKQildT9I4sI+feXqsG30QMJXhiaogA0t 0R8ZhyBzoVYxyjHN9iqb974Ig9oYGJK1xIWsihMW9OR9QMAKXJY/wrDHmIrn/p+w 7Gy5cm8cKOQBkJsUQ1vUTg25iMdiA1kV8LUwtPRJR9Dbwbz1xmaTXMG6LRLv/oPp zCxPZ0/OG7Qf57JrK/j4Zn47ID4deMODwe3PNY0J7gXHEX2IjMDd/fgvwGnX2stK PgT7Pkd1CY/NMwYvdru2yhZcepaVoNeyCCxTnAjoiZ1B6dIJw99cT85m+5fo9wnC NbCxBHQPlsKFl1xpoqCxdlixEce0tkZtU1SXf3Xq3fFhDAJoFeSz4KPL6vlTPJw0 eaE4tD6t2ZIvyF3faz6zJ+ir0nXFH/Gq2wpzXykrngzKyozX6IsQIPOOf78q98q4 EUVjvObafkbewbyaUN8ogATTL0EsRuGl4JDVlH2DCg+/GTyg8y94v8rH8+LTJZRt aSAUTsYRbSEZ18UNsMKXsDOJpLQrLKSoYyKGweZ7jqeBqav2Ggd5hFMizr80zxl6 L37wxzI4DWPKIjLURDGvAtQZz89yU1QBmkQKpk1GE022NISSIPCgvwKWkywdHwQQ 7a5l180+LR8CAwEAAaOCAmQwggJgMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUb9mP SiUaUBouV6kpZKHkSsaAwREwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg5zYW50YW50aW1vLm9yZzBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisGAQQB1nkCBAIEgfYE gfMA8QB3ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAABbDR+/WkA AAQDAEgwRgIhAO827NGc/Y2FySb5JMwTqUHosuo430DDasdB/hjEw6TWAiEAh9Gz zAP7cAv/+Ho8ygMaFmj2tEjlrf3mUEKaOBlea7QAdgDiaUuuJujpQAnohhu2O4PU Puf+dIj7pI8okwGd3fHb/gAAAWw0fv9pAAAEAwBHMEUCIQCDVqX9GO7QN6Ixl2RX JvQ+0CWbEXlqWFH5ili8t+8R/wIgYsKOUMbJWl6z6JX0i5IDXF2Z9cblo5bpK32E nEulSOYwDQYJKoZIhvcNAQELBQADggEBADS00QQMpmtXyPlfgMETyW5xSsXTpDfL I+/y8c9OEOaF2iCCjF+xXTnf3uFdMWPqpRqYG6sngk5Xdsltbc3PlXzabU8T1kpk 37fGZpfdVsBnG49PCa0zmI1zfTxqa42YohlZ8U79B/h/aQNMDS2O4dsO0ioFUBRH o80CdLkW+AfdsPEVeM/uf/+wbI0arsOXw81C92fl4CDxVGuB1KxJQAhwnYH2Ezsv +lYRd/93EpZGFwdgIS+7A7Vq83MVrd8ywOAicrQAe2/3zowcIG0Jb/bWSYkwZqWK SwhhyZZ5i7NFD9rpwa3ecIhkL8iphdsOoRDcElPKeMguqNSIYF8ifok= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAl4hrAAt+Rvscp9T8VKzM EaxdR50MyhwC28gUAAmpFkwxCPOws4EvisYbKV9D6FSsKQildT9I4sI+feXqsG30 QMJXhiaogA0t0R8ZhyBzoVYxyjHN9iqb974Ig9oYGJK1xIWsihMW9OR9QMAKXJY/ wrDHmIrn/p+w7Gy5cm8cKOQBkJsUQ1vUTg25iMdiA1kV8LUwtPRJR9Dbwbz1xmaT XMG6LRLv/oPpzCxPZ0/OG7Qf57JrK/j4Zn47ID4deMODwe3PNY0J7gXHEX2IjMDd /fgvwGnX2stKPgT7Pkd1CY/NMwYvdru2yhZcepaVoNeyCCxTnAjoiZ1B6dIJw99c T85m+5fo9wnCNbCxBHQPlsKFl1xpoqCxdlixEce0tkZtU1SXf3Xq3fFhDAJoFeSz 4KPL6vlTPJw0eaE4tD6t2ZIvyF3faz6zJ+ir0nXFH/Gq2wpzXykrngzKyozX6IsQ IPOOf78q98q4EUVjvObafkbewbyaUN8ogATTL0EsRuGl4JDVlH2DCg+/GTyg8y94 v8rH8+LTJZRtaSAUTsYRbSEZ18UNsMKXsDOJpLQrLKSoYyKGweZ7jqeBqav2Ggd5 hFMizr80zxl6L37wxzI4DWPKIjLURDGvAtQZz89yU1QBmkQKpk1GE022NISSIPCg vwKWkywdHwQQ7a5l180+LR8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 347369029747409334994354280649865202013231 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-27 16:33:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-25 16:33:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'santantimo.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 618200225988918322896247448418299637245236939916700112493779498038853735353387465592936752025180540722212146359677110908718210747533114974536596933595235345076611349477629927413195681934395147685063473281924495216790904479073234970965049360386905105015384852490883378882422145995497356536822008815990295465384575062126248421129942425391907928534047522977728277705606626428020527246275928412335949405873179234866503469597013641501506166736967207444685803643710630727284169982888950346557051914006794882296989410578565201067003962752641590199786672240776551380182925036093632607729820923899322937484092487610667663547709843514710235323291464214601448152492204055736946106032067795495387649117251714184343019634397858111840032594291020997685433500732501906972540484905006211023739795155566745369756750731023831712849624943076635170621262664961201918545349555516343393771398087755970553778181121426837808639086133774190792003729878783925390945210810778251704816777830633720009102499362148415498262960245827874988598980181320193500851945719910519012632797649949561004705568326765417330669991345494926781306703780533664836182677998387417375307279740819641964669612076607748011180404874482862547839732205820016582028253230476047789970042143 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6fd98f4a251a501a2e57a92964a1e44ac680c111 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'santantimo.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016c347efd690000040300483046022100ef36ecd19cfd8d85c926f924cc13a941e8b2ea38df40c36ac741fe18c4c3a4d602210087d1b3cc03fb700bfff87a3cca031a1668f6b448e5adfde650429a38195e6bb4007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c347eff6900000403004730450221008356a5fd18eed037a23197645726f43ed0259b11796a5851f98a58bcb7ef11ff022062c28e50c6c95a5eb3e895f48b92035c5d99f5c6e5a396e92b7d849c4ba548e6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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