www.pignola.net
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:98:ec:2f:57:3a:60:21:f0:0d:06:d3:01:69:85:e4:8e:9e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.pignola.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:98:ec:2f:57:3a:60:21:f0:0d:06:d3:01:69:85:e4:8e:9eSerial Number (int): 313373721181415598201834288409987263008414
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c6:66:51:b6:d5:8a:c7:92:5c:d7:3c:6a:5b:d4:a9:5e:ef:35:86:22
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 70:4d:79:0c:c8:4e:56:63:8b:a2:e9:01:8d:47:97:34:91:cf:06:ec
Fingerprint (sha256): d5:3a:ab:12:0f:a8:0b:be:68:78:6b:7c:ff:74:00:87:a3:22:4f:ee:de:e8:f1:5e:b2:05:28:7c:03:a6:4c:3a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.pignola.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.pignola.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.pignola.net
Other certificates including the domain name pignola.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.pignola.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgISA5jsL1c6YCHwDQbTAWmF5I6eMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjcwNjQwNDFaFw0x OTEwMjUwNjQwNDFaMBoxGDAWBgNVBAMTD3d3dy5waWdub2xhLm5ldDCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBANJFZVPxAAYgeC4Rw5dB5YN8FsyTxaL4 anuD2Ba3v9PGAhnsQCo7zIIjXWMyojiDgO2kRetSx+u4ZphSCaaXLP7yCfC+Nno2 yUdxJfmjHpR5kXJQOSwVsoXoB540c7ti5k+VZr/zg9SzXaASt8Q6hHdhjesEKub7 cexiKdhrYDwe42Qse05RsAjORfq7SbEQKQGtj4LPFbCm8i7AMdBJt0H7laqR3lpI cYefI9m3gPF+daESzGiZSE9QNF5F3D+CBTQ4jL2fyjp4sp+dw9asnFf2aG+wFofh aFoSRtlDMy/NYUBlArxiOAex4EaI8EwIbwkr7WVKJ2pJ3sWeihSufih68tYNMYwl gOp40HJM8e5k0tx8z86+qSjOKWwxxzNWqRdvguNSVEbqKV+XOuhdRVL1Pr8DYFnW JmgGzOvh95pCx1dpQVtV3kYlA/N8V5AoG9TY0KWk4WJFdA4x0rYdRdncYwtvP9D3 FtqyrH8IWtdAMiqmaJ5Ff0ocw2wP1Nss0Lkf4Ue9iUz+7iS5i7+EwRWtKKfyxIcO fxWdGa5A56LzFZbCxSvKjIwomuaGzk4eve2Wv7axn8NCkIhnwCdjWshRhoO7txPe 1SEGRyU0GtzWiowPXE5iQfn8INW/d0CZnvXKF1Qg/9XicvRSwtjXnzGCbsned3Z4 18L9USrEOfBTAgMBAAGjggJlMIICYTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFMZm UbbViseSXNc8alvUqV7vNYYiMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd3d3LnBpZ25vbGEubmV0 MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB 9gSB8wDxAHYAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFsMl/o VwAABAMARzBFAiEAh71fK1O1JUXEuvINCK0uSIbVpUr05tPm5p0nIMpqmggCID7/ ZZzHy357A/QDVdGQmcUP+cE8hmRKGfsRj5KsbuX+AHcAKTxRllTIOWW6qlD8WAfU t2+/WHopctykwwz05UVH9HgAAAFsMl/mgQAABAMASDBGAiEAkcFn+GmjyDegbD1J IhTVUUaA9Dn0am3OJ+y8EIhhyiICIQCnY8me/Kmcoq9CmY1EoeIwyQWouGYjdeV3 vhAnkGxl4DANBgkqhkiG9w0BAQsFAAOCAQEADQ4oRmXVw6HtKhGPCbbmIFzmKFdx m2oXWILmpGmqFNoYNgmJesvt5XzGGWfVlGh/mjHNILffqHzPgtD7r2mpFMPgz8Jj QCRdRFKXNa+P2+g4r6ctpeYUuZ7WH+zX+ziDhsCrc/IdFL4io5tdS39pXsCMLwvB qotCNZ+ibGMEoPauXxFrXszhtVvpJmCUVAY5wyZd+lz/UPQ4dNQmmDB8HNAbjADW z2Idx1WhVhal3cwVBTdxsbsGRnZGQVEmss++owSrVRbA/UzKl1jrMKwN2lxHZTpK zwQb1/C9Rl+YBiPWOuqbb/l8i3J7Aeiam6AF3zUxlZ7ydHNrrb9/fewX1A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0kVlU/EABiB4LhHDl0Hl g3wWzJPFovhqe4PYFre/08YCGexAKjvMgiNdYzKiOIOA7aRF61LH67hmmFIJppcs /vIJ8L42ejbJR3El+aMelHmRclA5LBWyhegHnjRzu2LmT5Vmv/OD1LNdoBK3xDqE d2GN6wQq5vtx7GIp2GtgPB7jZCx7TlGwCM5F+rtJsRApAa2Pgs8VsKbyLsAx0Em3 QfuVqpHeWkhxh58j2beA8X51oRLMaJlIT1A0XkXcP4IFNDiMvZ/KOniyn53D1qyc V/Zob7AWh+FoWhJG2UMzL81hQGUCvGI4B7HgRojwTAhvCSvtZUonaknexZ6KFK5+ KHry1g0xjCWA6njQckzx7mTS3HzPzr6pKM4pbDHHM1apF2+C41JURuopX5c66F1F UvU+vwNgWdYmaAbM6+H3mkLHV2lBW1XeRiUD83xXkCgb1NjQpaThYkV0DjHSth1F 2dxjC28/0PcW2rKsfwha10AyKqZonkV/ShzDbA/U2yzQuR/hR72JTP7uJLmLv4TB Fa0op/LEhw5/FZ0ZrkDnovMVlsLFK8qMjCia5obOTh697Za/trGfw0KQiGfAJ2Na yFGGg7u3E97VIQZHJTQa3NaKjA9cTmJB+fwg1b93QJme9coXVCD/1eJy9FLC2Nef MYJuyd53dnjXwv1RKsQ58FMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 313373721181415598201834288409987263008414 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-27 06:40:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-25 06:40:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.pignola.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 857831153554365776520561363624132025386735375062872165095485867289058876441476231101268170083537363648083617565869300958921683858816364192416460874315013374927676389177007921682978182931715449484618043051693519670093623678593598624213765663263549153009466518157255431463094278701056589572877881786973083832222490035860723077248579621356999291199316398044589134016678514960421915442211767313592470468425809250008284454857219581191561192400045544403469625582595050474589868899560772779105956824008074098028671501035501240592197204296413401990872750431123554243457350312244018991491254314781171271323124811945769719323690629746875502328053825215507671053303773387548334153193553734399824421557764865189795949840675326650087386670625465384499559233445724945806764439215910049423219627108352678105459598703536739922416333017266363944911360352316809259085842322410596144881047199721905758379049659047992835348869776582654238416583469578082314435134961630886833590033238180418030514917967816135685805789298049118965016427634174252760364612997916697111965283127673604900045448591693007563296968205062765201228699562175740064912729103278020149249466367581448203600002058258427477309255292386056871537993879771398075197051809843488769302982739 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c66651b6d58ac7925cd73c6a5bd4a95eef358622 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pignola.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016c325fe857000004030047304502210087bd5f2b53b52545c4baf20d08ad2e4886d5a54af4e6d3e6e69d2720ca6a9a0802203eff659cc7cb7e7b03f40355d19099c50ff9c13c86644a19fb118f92ac6ee5fe007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016c325fe681000004030048304602210091c167f869a3c837a06c3d492214d5514680f439f46a6dce27ecbc108861ca22022100a763c99efca99ca2af42998d44a1e230c905a8b8662375e577be1027906c65e0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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