www.rimasti.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:b9:24:5a:3c:09:c6:60:8a:b4:3a:9b:de:2c:e9:ca:d4:cc was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.rimasti.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:b9:24:5a:3c:09:c6:60:8a:b4:3a:9b:de:2c:e9:ca:d4:cc
Serial Number (int): 324337416407938905212070231267138909951180
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 84:c5:26:d1:8d:fe:6c:3b:2d:fb:51:67:a9:ba:b4:51:b9:5a:71:d7
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): de:37:58:03:35:e6:eb:11:4b:3c:be:a3:ac:f3:56:98:76:ec:14:bb
Fingerprint (sha256): eb:b4:8f:cc:c5:4e:7e:24:d8:bb:fa:76:d4:41:ea:98:3a:a9:2f:54:4b:ac:12:b5:3a:ab:ec:a0:a6:b0:ff:69

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.rimasti.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.rimasti.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.rimasti.com

Other certificates including the domain name rimasti.com

(limited to 100 certificates)
www.rimasti.com
www.helpless-laughter.com
www.rimasti.com
rimasti.com
www.rimasti.com
www.rimasti.com
www.rimasti.com
www.wpbuilding.com
rimasti.com
rimasti.com
rimasti.com
rimasti.com
rimasti.com
rimasti.com
www.rimasti.com
58.org

Certificate

The complete raw certificate details for www.rimasti.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 324337416407938905212070231267138909951180
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-27 11:13:31 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-25 11:13:31 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.rimasti.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 864247539411693046059587772395915023040101510041779904494537721732948950399133896963505129822596005668724663453235355749813236117914086989643552782269004575261596633695346194920604113535881515182200386232925323558263815380692430865323569741958265418696564635232578866661766130475840891871691238143671929025405757356572016517210702980649669597783164717002462300574665946627079247104011577769472861817114223517031150957747919090558548417048240839962537227669606437679975040706922030416363105666455823014349337288122390700246405319111443461108491512941936140425556221054172691855492401867850084518925151766001760868079145470892644303521404663797778205782607797526105532346417935641241220600735179981772606602901598076682321844985899555052697152807775229628901485484782178321378453020776879099455270206832081925112857397984764128415692903637708250760053231454832469426253322233882177698174599373214946515992882411008161395977995390823040332039110484018609575919778155208700699071538456500255000898480155977036394206675799443114216647596278287841114883708364872702407866421392663303001420089952253199568050271786416451614283585202016515142103244313448495577782647323312847657855594015056874636472725753357409258174394014313866334320334839
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							84c526d18dfe6c3b2dfb5167a9bab451b95a71d7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rimasti.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016cd2fed4d5000004030046304402204454a00fd204a0e4cd7f7ad4d0159eb2c224204edcc1535307a5fbd1bcfb75af022022faaed000649687614e23d6cde7fe46a30abdc7068230c03ce029951a8ebf8b007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016cd2fed4e6000004030046304402201049a1eb0abb03d67585cce5c3c7360c1d2465f40bbdc80c9986c65acc12396f02203452dcc9ad5c2fcff98fcfe95ff8ee846e35ef2081ab585761f5a2a516c2bf67
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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