www.oleggio.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a8:5e:39:30:16:25:2e:02:ec:11:18:d0:73:d4:de:5a:51 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.oleggio.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a8:5e:39:30:16:25:2e:02:ec:11:18:d0:73:d4:de:5a:51Serial Number (int): 318629539805833307499290901005931787475537
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 62:e7:81:01:54:4b:a3:9e:4f:9d:54:21:53:06:e2:2b:d6:73:74:99
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0e:d7:c7:d2:ca:e2:f2:ca:01:0b:60:07:11:85:fa:e6:1c:e7:e3:fe
Fingerprint (sha256): de:ea:0f:3c:d6:4e:e1:02:c7:63:25:77:69:44:cf:27:63:3e:ff:c9:07:44:73:fd:a6:39:c2:dd:57:ed:6b:40
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.oleggio.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.oleggio.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.oleggio.org
Other certificates including the domain name oleggio.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.oleggio.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVTCCBT2gAwIBAgISA6heOTAWJS4C7BEY0HPU3lpRMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MzAxNjE2MTRaFw0x OTEyMjkxNjE2MTRaMBoxGDAWBgNVBAMTD3d3dy5vbGVnZ2lvLm9yZzCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAKuk3h0MIOLAml+Euu0yneu5eBTvNXjU Ak6k2aY3U4zBzf0D8l/kLl34z4RairoGl1c43lHtwSUTWnb0mjBs8bG+ENzNDcG3 kakNcKfyxUO1s6SHh+kb5u7hq/4AEPooOz+jkzfwtKo3h+2lKOZ9IIxMpn4mtKqC rFLR9txl+YrNSXIFR8/1oxcOQPRmXRM5oCUKUXcsix463fKSe5FBx/fEtjElKHk3 59zS1CNQBphl7QP0kumKEpT0L8pCNBiogVWxq8RSJsIeXiqqN/ljmGZXkV51bExK LuwnaB/mfuFAELCPoX8yUVfZDN3if3D/xiDtlL1jY+bHtvqinzd2xLq+SFccwb9J 1ROLuernWF/wGa+7clsXMhiYHLalfeSVaWXX/gUiQEz0cYqzlEs6usbvPWFXb77X S2SFQDd/VowlX/hyCeqc1NeuewQqlWzblHifR2geKRTHQUiFc0Xkd08NXEVXv7fC hWYRmOB/FG7tWI9fpUvut2OP3skLEEn16FUzToeyJDvJdK0JjwGHqdyZPi4e9ooK fK/LfVCaWzwupAJBEWMhhuC//bY7tct/UWS9JWGSO+DJW0Ow/LTkuSM+C28qj05O l+LaFuisEUIFS8OAN7nbn4Bvoti8KqcSNJnpaAEOXvo2G4n16g/Ned7sSXF09GVq 77G5KjwJ8KYJAgMBAAGjggJjMIICXzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFGLn gQFUS6OeT51UIVMG4ivWc3SZMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd3d3Lm9sZWdnaW8ub3Jn MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB 9ASB8QDvAHUA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFtgywy cQAABAMARjBEAiA3MNAvt3khto1xpd92FkuiABTA5pxd8OpGEcMo94oZ1QIgc33J bdoXSig9965ggNTbD0rt+Ovu/bl0NW8i6b287sYAdgBj8tvN6DvMLM8LcoQnV2sz pI1hd4+9daY4scdoVEvYjQAAAW2DLDKSAAAEAwBHMEUCIEaMd3LpieBoKbSMwYzM sMblLtPguPtrVsPLUXxQNlSnAiEAnnmDAyXKgPYFu0+YejC7n1bNjzMki63qNAa0 f+j/HV0wDQYJKoZIhvcNAQELBQADggEBAAWoNdaBwmJz+OMJrrtk1xXJGSXwyOJS tOE/6gEJvETKmQcYV4wpGklOcmKnaljdCFc+NrX051gZGnEm6YjW6eLVccXn5im9 hMSCMveGX9DA0G3GAFEKRV7Ot9oLDKtgxKkntTn3RBrEMPt4SL74dgYt4MzNwb5l SLdOCHaJxPyLYiEfGsS6b+X2uqG2FY3KeuGYrqeX8/oIpozHxwPviLEjFH1SNpOI O1KQKdAEJ91KMMaYcB9H8MsWTSujJV2aC8ivOwVymOge1rGIp3Z7SBWJuBMrE9QB jn4Wb9f/OigRL42Oc/q1Y3TlHs0nP2S3I+WTS/uBW31wuzk364t1FW0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAq6TeHQwg4sCaX4S67TKd 67l4FO81eNQCTqTZpjdTjMHN/QPyX+QuXfjPhFqKugaXVzjeUe3BJRNadvSaMGzx sb4Q3M0NwbeRqQ1wp/LFQ7WzpIeH6Rvm7uGr/gAQ+ig7P6OTN/C0qjeH7aUo5n0g jEymfia0qoKsUtH23GX5is1JcgVHz/WjFw5A9GZdEzmgJQpRdyyLHjrd8pJ7kUHH 98S2MSUoeTfn3NLUI1AGmGXtA/SS6YoSlPQvykI0GKiBVbGrxFImwh5eKqo3+WOY ZleRXnVsTEou7CdoH+Z+4UAQsI+hfzJRV9kM3eJ/cP/GIO2UvWNj5se2+qKfN3bE ur5IVxzBv0nVE4u56udYX/AZr7tyWxcyGJgctqV95JVpZdf+BSJATPRxirOUSzq6 xu89YVdvvtdLZIVAN39WjCVf+HIJ6pzU1657BCqVbNuUeJ9HaB4pFMdBSIVzReR3 Tw1cRVe/t8KFZhGY4H8Ubu1Yj1+lS+63Y4/eyQsQSfXoVTNOh7IkO8l0rQmPAYep 3Jk+Lh72igp8r8t9UJpbPC6kAkERYyGG4L/9tju1y39RZL0lYZI74MlbQ7D8tOS5 Iz4LbyqPTk6X4toW6KwRQgVLw4A3udufgG+i2LwqpxI0meloAQ5e+jYbifXqD815 3uxJcXT0ZWrvsbkqPAnwpgkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 318629539805833307499290901005931787475537 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-30 16:16:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-29 16:16:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.oleggio.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 700246484270922897643454429504942179487067411460668700788601391055579913481935095127578961746447550838062984418184275703178821781850819482973019800694909567825123551838699797009554833308887575642652595972067452397256777255507198284280218829777689663413870314189383348458995211962782280251379814860482025677098121684847899821415533223761912534897510103022903339832931085361431507675690211211624742562399056571377558042029462689746426433997717170293238056027175495355965763777644263555783219975468889511847091960244930537954236362518579920123115582225238331255772463463346734715019616473451854500708772404464858838662875717454074112625612561253282843182614409638210589984697981234063133867015134756816420335314751698997141532413244469528047267572902916189421782470058855110671237563464851010524663105775028176185910461534303530483165221360754927340358184967466514141272606084098725563884325649173851835830866771215665850653639669302714553155983965510092518634382487353621337990673651920244962982400940524256710449098999757295251401401334470531678061165748268413417731007730695712376089868494766075755342272405514377892606264384094999268919495811900634013398349154431921516135722217611448102676284092350583287481082120674367851470038537 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 62e78101544ba39e4f9d54215306e22bd6737499 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.oleggio.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d832c3271000004030046304402203730d02fb77921b68d71a5df76164ba20014c0e69c5df0ea4611c328f78a19d50220737dc96dda174a283df7ae6080d4db0f4aedf8ebeefdb974356f22e9bdbceec600760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d832c329200000403004730450220468c7772e989e06829b48cc18cccb0c6e52ed3e0b8fb6b56c3cb517c503654a70221009e79830325ca80f605bb4f987a30bb9f56cd8f33248badea3406b47fe8ff1d5d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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