www.bottegai.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:0b:84:80:d5:13:b3:74:cb:69:eb:1b:46:8c:72:82:44:da was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.bottegai.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:0b:84:80:d5:13:b3:74:cb:69:eb:1b:46:8c:72:82:44:daSerial Number (int): 265256090862566684069452737766432239142106
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8a:5b:90:e9:8f:a4:4b:bb:3a:8a:94:cf:62:01:30:f2:9c:97:a9:1a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 59:de:cd:b0:5e:59:0e:20:c0:48:1d:a4:ca:4d:84:09:76:b1:83:be
Fingerprint (sha256): cd:d4:d3:8a:92:a9:df:ec:b9:57:4b:05:43:25:39:90:53:51:9d:95:c1:e3:8a:08:57:3c:91:63:51:c1:73:ac
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.bottegai.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.bottegai.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.bottegai.com
Other certificates including the domain name bottegai.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.bottegai.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWTCCBUGgAwIBAgISAwuEgNUTs3TLaesbRoxygkTaMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjMxNzQyMTJaFw0x OTA2MjExNzQyMTJaMBsxGTAXBgNVBAMTEHd3dy5ib3R0ZWdhaS5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC9fr6MMMtGuiPoba++n8zW1OWm9Sa/ NJHqoDTS/BSDrGhU/dLeibAOh4LKc8kcrTvA6XE3QZUqC7dv3kKnLmuRW8CUxmpa lVkSbPbqcwWTcwGK3Mrnpxprt366hRGiNbW+8MK6B8fzqofn0BeXXI5mv0tm+nvF iEnOEij7sjhx//gQcTZALuY9Tu5ZWVblfXxEYM/E1stLrhpjM3i01PSFz0BCssPS yRRyQhXWfW+yPxT0DZbi+DNFrOwoSlgp7jl/GtvZ84cqGLOlaIUNlrv06SHN8TPC X3bKaitD7frZ6arYq8G02Bv0SXfh+JhNJotw/a8c4WtmxASMEEczmyoDSTwzb1zW gVRDi51wOUGVkLyHbIJKVyW2EqJughZ+0VnE8Ehz3DvFSnPrD9TH3SLGSyaAqAoB 5v7RjgLM2gApP6X6X+c7L5IqIRh1S0KyMNnTRagYOT4TsFggI0024CyNelCvsCS3 rCRkz/ULmKlhDLRA1OZ+dXbbO4G9k0EYImpmj5TQSW+Z1xDOIcB+MpK+TDAhIj+3 +adRrCylwWw5F4cgmXuxJUl+jRt/3yfEQTDG61TdrtpUIL3s/UDzrPi2woDH6/nD 72d4Do5DX34Vkmbkneksf9Fi6FI7ugO+4eKYxrO35n6R3U7zHOUkn0JHBxqU6mWc jIWZAoDhknb9+QIDAQABo4ICZjCCAmIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSK W5Dpj6RLuzqKlM9iATDynJepGjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5ib3R0ZWdhaS5j b20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQC BIH2BIHzAPEAdwDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWmr 3EL0AAAEAwBIMEYCIQDZiCc6ZUGO1zMp8hdpfuD4we27UWQdcDZ/CiLeXhW6ZwIh AO5rK1tILm8AGsRccUjebsTpc7vVgSi1CSakxRbgjUwVAHYAKTxRllTIOWW6qlD8 WAfUt2+/WHopctykwwz05UVH9HgAAAFpq9xC9wAABAMARzBFAiEA7PCONtCze3hh /C/Hry8VU4i9feCPJivSyzqmQ7eZkqUCID63r4Q3DaHsPxvh29pnwS6s02fwBRUn G1A/4ogLxrbqMA0GCSqGSIb3DQEBCwUAA4IBAQBeXq6zZBdlnFsrA1ol7MdOrPDX e4niWS66Stagt/8FA6S4QnXYrcvVPYocWR8FUCWFU1BTSanNniP3zf/tV1ypStUE 6Rj+BleKfM2PCgCbmmdYK3Qz9TiPD+D4x3vJgpFPdLeUsGmnsWZfMNtySSeCFcDh vzAhhY1JhzMiPiPWIspYF6f8rVL2Ax6bPhO4ftdS4S0kPPp4lTsm+Uttov2mD7Mc s+m21627fnLqVG/5ufc7u3JGMLLNZ4XiAZgXle4gg7prMxkia4gcH/SNL0b5jueY 7mpt0N7mc82e6ndxy4o+hA4qmxZ529jv2bUGfDi9Z8vLhwe3bB9enMVtZRjL -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvX6+jDDLRroj6G2vvp/M 1tTlpvUmvzSR6qA00vwUg6xoVP3S3omwDoeCynPJHK07wOlxN0GVKgu3b95Cpy5r kVvAlMZqWpVZEmz26nMFk3MBitzK56caa7d+uoURojW1vvDCugfH86qH59AXl1yO Zr9LZvp7xYhJzhIo+7I4cf/4EHE2QC7mPU7uWVlW5X18RGDPxNbLS64aYzN4tNT0 hc9AQrLD0skUckIV1n1vsj8U9A2W4vgzRazsKEpYKe45fxrb2fOHKhizpWiFDZa7 9OkhzfEzwl92ymorQ+362emq2KvBtNgb9El34fiYTSaLcP2vHOFrZsQEjBBHM5sq A0k8M29c1oFUQ4udcDlBlZC8h2yCSlclthKiboIWftFZxPBIc9w7xUpz6w/Ux90i xksmgKgKAeb+0Y4CzNoAKT+l+l/nOy+SKiEYdUtCsjDZ00WoGDk+E7BYICNNNuAs jXpQr7Akt6wkZM/1C5ipYQy0QNTmfnV22zuBvZNBGCJqZo+U0ElvmdcQziHAfjKS vkwwISI/t/mnUawspcFsOReHIJl7sSVJfo0bf98nxEEwxutU3a7aVCC97P1A86z4 tsKAx+v5w+9neA6OQ19+FZJm5J3pLH/RYuhSO7oDvuHimMazt+Z+kd1O8xzlJJ9C RwcalOplnIyFmQKA4ZJ2/fkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 265256090862566684069452737766432239142106 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-23 17:42:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-21 17:42:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bottegai.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 773072540341457397544457224707716895333318626258947241126767476151806189170318995636400235452951674902358289865547257121245025281143163027200322693178074604591127994811818382335441574060084259036100290479474305991726326819196255928579814352077315232250405862956313659061581878755951493120586548400036888167809533672980690394866479694815726713989250058549205918706785865210800526845304745387187004710451792037371826083249784422615960864191613074476573959941685795615614896347222635581433381585627274464651786081247090127053210956916092721446009552886539287584497714674120992718507508494887895493875336217040284647723907640417675950399062091599436598353626492155212420471189321619683767073606186433041748355720532951512370654614374884547446324557125646127839307939836224235523606004208720853026069944729407334797996445631205534066934638485187656133997284424338281157037822172824337294384615717361525347073232080987896234456177273736996188466837699782615601791944101303520555820835179692375710836111625635369940391797984553931959221009027042790966817410450318686096387502114775639443673458597152870601889062844799819227145113096599793344429141696730788029650919183994237258634544326443335316366329221621701596090168441245689387117116921 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8a5b90e98fa44bbb3a8a94cf620130f29c97a91a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bottegai.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000169abdc42f40000040300483046022100d988273a65418ed73329f217697ee0f8c1edbb51641d70367f0a22de5e15ba67022100ee6b2b5b482e6f001ac45c7148de6ec4e973bbd58128b50926a4c516e08d4c15007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000169abdc42f70000040300473045022100ecf08e36d0b37b7861fc2fc7af2f155388bd7de08f262bd2cb3aa643b79992a502203eb7af84370da1ec3f1be1dbda67c12eacd367f00515271b503fe2880bc6b6ea . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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