palagi.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:fd:13:60:e1:3e:c4:ac:14:10:c9:aa:17:a6:ad:c1:5e:e1 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=palagi.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fd:13:60:e1:3e:c4:ac:14:10:c9:aa:17:a6:ad:c1:5e:e1Serial Number (int): 347454054987211677930576186133972214963937
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 68:d6:21:8e:bb:1d:c6:33:bc:6b:8e:62:26:c0:45:fa:3a:5c:87:eb
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): fb:26:22:e3:2a:fa:c3:12:18:f0:37:db:1c:a9:82:82:20:a2:b2:5a
Fingerprint (sha256): e3:22:09:27:80:00:86:92:d5:c5:11:c8:dd:03:f4:55:36:23:fb:e1:33:f8:67:70:10:1c:71:8c:ec:f5:3d:70
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate palagi.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for palagi.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
palagi.com
Other certificates including the domain name palagi.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for palagi.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTTCCBTWgAwIBAgISA/0TYOE+xKwUEMmqF6atwV7hMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjcxMjQzMTZaFw0x OTEwMjUxMjQzMTZaMBUxEzARBgNVBAMTCnBhbGFnaS5jb20wggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQDGOF2/AlJYdZqVzPqEdsH0ZZ4yXFZBP/0dl42Y UE3gDJORQ8gmRYFygPDEZdsi+MXsKX7f6ufgLh7ZuqyYTey1iJwACIaytQPWT/yf aVHLHW5F96cQxQx3KVZxYYFwNrn9KIy4e/VdLSgeDwLHeeHWkefgBlEkjxNZSCmJ /aFQFlhlxxOKXlzx7BfvwuRuKBLpwBYVubBOZv1GrCf6CxO9DML0JFseNH5CJ+pj 2z4c8xH75flumX7oO2A5g7R8y1vYO6CzFJGasiY3kRK0BGK4MQNBxq1EY9oWZSF2 mRya7qNd8YVyiIPlUQSKwhs8NN6v/ghwnMr+fj2Qi0pBbUfD+jyUWvp7CjKGLSjE Unrqw433UJp0lbDf+FRk2GmSOvJfOabq+x4LcMPr57Efs16QRGafviX9/OWe3lxd Nza9gxtBgeXwkBo1mC9VrLuingVjxBTEzRCLNKqCeF7laLOXFy3IQyNSAoTXUFRT aJL6ZDoemA1zGYfTiH1PUYYYL2q+nfcE821xyYoxzGQ53hhCPaYZDlGmk1yfHXoS myqqs9u1mx25uOWvNAzyNRiZ9fySD+HpToxnpSZGQZvPWO9RxFppXzxGIwrgeySy hcn+X62ubKF+AphReEJD5TAU1PTZ5dRwaJlWZwGdD9Xbu0eCBcTXWtTcsW/6qFAP 7NrmiwIDAQABo4ICYDCCAlwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRo1iGOux3G M7xrjmImwEX6OlyH6zAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCnBhbGFnaS5jb20wTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgB0 ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWwzq9p1AAAEAwBHMEUC IQDhOvphRHD/IifqnoGJOw8HteUxsidEYYsBIBCm/1NRWwIgTQn0FjoIdir/x424 184/IzeCj+N7KwwRcAG9/41f6EYAdwApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTD DPTlRUf0eAAAAWwzq9qSAAAEAwBIMEYCIQCLSMrYR0g8y8m5+FdLq1/WBDZUSrID aOnHPg9eKuuSJAIhALBf2tPyYSgTHtEUPeycprvCkIhbQcN/84h0MbwiIt5YMA0G CSqGSIb3DQEBCwUAA4IBAQA65e2tEO8jDDtxkfNQEia+tx6gk+rsQv1uVH2HAKR2 sC3r8utHN5Godgadc49TSbHap9ykoY1IRhei0iII8dSJpZRLgH+sINl7jtxyIWWu VtQ7yiELi9WjIhJWP+ytj8jWXC2wQbuOPlQNKyxC0SjGBMMQnZoJlrBt5rywS+kd txpTs7gnddYWUv3LMhN3YNt1JYR5jp3sEStl/6XHEwiHFiCgsOLJ4n3p405os7wX 3KLZKdTAtzdMT5DqePsDEI177UCdjAXYMYplcYpzw/be5fASx5ojqdjFeKKy6UQp 6PXZoJKuQftIzbOfnMnZ9WfwnpEhZe7lZojsdnU2AlbL -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxjhdvwJSWHWalcz6hHbB 9GWeMlxWQT/9HZeNmFBN4AyTkUPIJkWBcoDwxGXbIvjF7Cl+3+rn4C4e2bqsmE3s tYicAAiGsrUD1k/8n2lRyx1uRfenEMUMdylWcWGBcDa5/SiMuHv1XS0oHg8Cx3nh 1pHn4AZRJI8TWUgpif2hUBZYZccTil5c8ewX78LkbigS6cAWFbmwTmb9Rqwn+gsT vQzC9CRbHjR+QifqY9s+HPMR++X5bpl+6DtgOYO0fMtb2DugsxSRmrImN5EStARi uDEDQcatRGPaFmUhdpkcmu6jXfGFcoiD5VEEisIbPDTer/4IcJzK/n49kItKQW1H w/o8lFr6ewoyhi0oxFJ66sON91CadJWw3/hUZNhpkjryXzmm6vseC3DD6+exH7Ne kERmn74l/fzlnt5cXTc2vYMbQYHl8JAaNZgvVay7op4FY8QUxM0QizSqgnhe5Wiz lxctyEMjUgKE11BUU2iS+mQ6HpgNcxmH04h9T1GGGC9qvp33BPNtccmKMcxkOd4Y Qj2mGQ5RppNcnx16EpsqqrPbtZsdubjlrzQM8jUYmfX8kg/h6U6MZ6UmRkGbz1jv UcRaaV88RiMK4HsksoXJ/l+trmyhfgKYUXhCQ+UwFNT02eXUcGiZVmcBnQ/V27tH ggXE11rU3LFv+qhQD+za5osCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 347454054987211677930576186133972214963937 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-27 12:43:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-25 12:43:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'palagi.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 808667783344555702472310119246312162316292555060363271942690975231134241387136964163136210222687600504844266150998686847656433410056471105494204153144849574008864762508909657007331720328463512103246341972272703554876460152437421546912612685467591854046460266779247696606395100518128703616856776580929438625802215043020628866234724199114100358323112459954327711411055013525991139516947622849965077149334622259423156167017054741756056693548798676730615327415344982961310038426938633748508576309519511320652405443256584254614918389572701101560937308077232324933265614195480748042636081188384128113529407341129912581867914503831541853977700145668853606972385090100592313579449518084926273635074561934181180884660245600795161117869721564952187366727098964969593576552731742318672842498094727180671221586631182746270635195999782639375256161042662643837792291481450001781027879220081064479396272044279357827436150574073058495812174956612824072386811561093754284825525975493341388895009161041084778497391223147333687995877111068928842214569601219806009478294471179514475764425752743216611609800921450000425641478887276522303464956907299937803114573144761494395521685447523640847779667136017177624855384520643940979528579327469570931891562123 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 68d6218ebb1dc633bc6b8e6226c045fa3a5c87eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'palagi.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016c33abda750000040300473045022100e13afa614470ff2227ea9e81893b0f07b5e531b22744618b012010a6ff53515b02204d09f4163a08762affc78db8d7ce3f2337828fe37b2b0c117001bdff8d5fe846007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016c33abda9200000403004830460221008b48cad847483ccbc9b9f8574bab5fd60436544ab20368e9c73e0f5e2aeb9224022100b05fdad3f26128131ed1143dec9ca6bbc290885b41c37ff3887431bc2222de58 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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