cepagatti.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:12:42:e1:42:a8:04:99:7c:e2:ca:7c:67:f6:ba:0b:d6:9a was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=cepagatti.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:12:42:e1:42:a8:04:99:7c:e2:ca:7c:67:f6:ba:0b:d6:9aSerial Number (int): 267550839066323395704893853871491508852378
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2b:75:7e:1d:d0:1d:39:e4:f4:48:da:e2:30:0d:dc:0e:f1:74:b9:29
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): bf:57:8b:84:6a:33:cc:ea:af:26:dd:01:15:8b:cd:40:8a:d9:09:15
Fingerprint (sha256): d4:ff:c0:03:e8:ca:ac:4c:e2:00:ba:fa:af:75:4c:c5:c3:fa:67:08:35:d3:3e:f7:05:fd:8b:7f:48:9e:9a:c4
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate cepagatti.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cepagatti.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cepagatti.org
Other certificates including the domain name cepagatti.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for cepagatti.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISAxJC4UKoBJl84sp8Z/a6C9aaMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMTQwOTE1MThaFw0y MDA1MTQwOTE1MThaMBgxFjAUBgNVBAMTDWNlcGFnYXR0aS5vcmcwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQCzEL2gtnoY+5cEluJjnJ0laoa9WLEf25It enfxbIfj9C5lpW+4dzq2VxMjO6gi3OLtEisWYrJnJCssbE6jqhvaubsbN+8f7dyj eWqsJeV1JQUpo64ZE1O+IPIZbywvAwfCjMQVSSYzlJEnhfs8uiucVqBFRXroPI7V UE8g7C3bodMmKwAx/InK4ctd39nqGpyWFjwDjqimstay+ODFE6kuToLTu1KlFeKZ lVensFXCrLA5NkZuFfcPfT3lv56tMHu5R/Tbxgi9FR1OIexn2Pco4gFskyNCBEff cdaUbCOksBIA+2/PaN1XccG5MqbT8h9rI+XuI1tHdAv5Vb7ZDsWXReeaM5JgOF1F NqQJAbJRDDsimrjp+dr0hrMEwN5ap/2ih5NNrNQXe5qMTxlY2dR3A2DLmEAfHy5G PCIUsgUF6dfXki0P8T3gCrVJo42cYA8MtVF7BSg9xJWJkrjPA1ZEXyHfswvtsUT3 E0K2D72b8jD1k6+BSry9NRct0c2mix5BgCm/lO1VFNstvz3mOS8rWUMvE38n24K8 9t9B4k3rlcTsTZaSrB2lz6QgM4CTMnJWnJP8HUpnUpSz3wnR8cYyWIKXlGZxCewG ZAHaWlRwU7wq3P3WH+uf5vzdlgOUyRzRXP5daJP+wu+coTWkyOQRVUkp7JVqyaIv Q9zrqAiPMQIDAQABo4ICYDCCAlwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQrdX4d 0B055PRI2uIwDdwO8XS5KTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDWNlcGFnYXR0aS5vcmcwTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggECBgorBgEEAdZ5AgQCBIHzBIHw AO4AdQDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAXBDMg58AAAE AwBGMEQCID51VKzuXvL4CYIUv5VaGFSNB4Z2FisCN049Tsd4wIleAiAV/6N3fNgS LJOUwHzALatgxT3ItSAydNb8iHswlTfbDgB1AAe3XBvlfWj/8bDGHSMVx7rmV3xX lLdq7rxhOhpp06IcAAABcEMyDrkAAAQDAEYwRAIgQl2Qa0KJP80cp5WP1tRufPwn MkCxIuMSxIOJvzIhmC0CIFRl7SmoXWbMljNIaayJpVkueRi0AqsEVU0DusabXirT MA0GCSqGSIb3DQEBCwUAA4IBAQB+iFPby9Ft7RGkPT5Rc7UTbpltosNqyUqtijQJ e65O1x6akD8BbISHohuNWO+aAgDvmziPp9bhmBiy2rUQXnE7c2OPXqrrmHmwsq5I dMlEP6ZGyG7EnGYJgzqh8/TwNBQE0mFfkNNKXdQrP7djIPECIzEyO0NtEwDJoPmT NEqArItoN+dRGWszyJ80kvjQXqr8hhBxtqJneAe4PdlWA17TKQT4WE63TxIawiSJ JoX1Fy0mUwHyEssU/1/44oZ9Dr7mUz9bQaiY1lWbNHkvEAQd6J6WyT0RSnD9fiTg V9oRT8kGnCPMrJWVBTMrEP2jXDooKbTgfVqljk5z+8HMgGKs -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsxC9oLZ6GPuXBJbiY5yd JWqGvVixH9uSLXp38WyH4/QuZaVvuHc6tlcTIzuoItzi7RIrFmKyZyQrLGxOo6ob 2rm7GzfvH+3co3lqrCXldSUFKaOuGRNTviDyGW8sLwMHwozEFUkmM5SRJ4X7PLor nFagRUV66DyO1VBPIOwt26HTJisAMfyJyuHLXd/Z6hqclhY8A46oprLWsvjgxROp Lk6C07tSpRXimZVXp7BVwqywOTZGbhX3D3095b+erTB7uUf028YIvRUdTiHsZ9j3 KOIBbJMjQgRH33HWlGwjpLASAPtvz2jdV3HBuTKm0/IfayPl7iNbR3QL+VW+2Q7F l0XnmjOSYDhdRTakCQGyUQw7Ipq46fna9IazBMDeWqf9ooeTTazUF3uajE8ZWNnU dwNgy5hAHx8uRjwiFLIFBenX15ItD/E94Aq1SaONnGAPDLVRewUoPcSViZK4zwNW RF8h37ML7bFE9xNCtg+9m/Iw9ZOvgUq8vTUXLdHNposeQYApv5TtVRTbLb895jkv K1lDLxN/J9uCvPbfQeJN65XE7E2Wkqwdpc+kIDOAkzJyVpyT/B1KZ1KUs98J0fHG MliCl5RmcQnsBmQB2lpUcFO8Ktz91h/rn+b83ZYDlMkc0Vz+XWiT/sLvnKE1pMjk EVVJKeyVasmiL0Pc66gIjzECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 267550839066323395704893853871491508852378 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-14 09:15:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-14 09:15:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cepagatti.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 730523070340646013199399081940151181115833680717916417314206058760907212535853231883165064841380906229636591828118145148662441552295260534046392038835413906740803707791683111094592342276762997932892789243396206645791188974000132714913986737875722252721358568005918886831875146535383371261406445466890919073834489050445563619337435642678942096585515272542826361340354883248848497266139957664839747778537853330951808019688923666139832066968111808456796536307037159895698870018420742988995950146087567663086849493487635216138913643772554033217350008298446158178816497381162898622386604786430473694887743327494041980399417445268974568466738619370268309821829449755946083537674578459603162315084068822125279670957195539177743715460517055065853648802766155810239225460346845757786981470904343799795888078743255511802381493092813112207718369683992681198314390589978939137231885422216865803483522160098870442330688956475085171666938712250698177607892311121165514716826209141246117299944789953136792031402662594699523803618554859064528880521149694479534637698154573846725117075198007224511513057401583434735343029206710978847602250262070174792525648986193691332592346866231472205169363724584885963714262980156694246791531777693778724266741553 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2b757e1dd01d39e4f448dae2300ddc0ef174b929 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cepagatti.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000017043320e7c000004030046304402203e7554acee5ef2f8098214bf955a18548d078676162b02374e3d4ec778c0895e022015ffa3777cd8122c9394c07cc02dab60c53dc8b5203274d6fc887b309537db0e00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000017043320eb900000403004630440220425d906b42893fcd1ca7958fd6d46e7cfc273240b122e312c48389bf3221982d02205465ed29a85d66cc96334869ac89a5592e7918b402ab04554d03bac69b5e2ad3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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