pianezza.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:48:d9:7d:05:26:ca:3e:28:ea:1a:55:a6:c2:3c:91:30:37 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=pianezza.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:48:d9:7d:05:26:ca:3e:28:ea:1a:55:a6:c2:3c:91:30:37Serial Number (int): 373238565762026508866130481982727131312183
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 1e:32:51:4d:4c:ac:7e:31:17:c9:46:28:49:57:fb:39:13:64:1a:87
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 5d:c2:e2:40:04:4c:45:1f:5e:f4:59:ed:8a:f6:71:11:8e:e6:b4:b9
Fingerprint (sha256): ec:44:d5:45:14:95:18:3d:60:f7:b9:82:b9:44:60:5f:b4:bb:0e:81:39:e8:f4:45:36:2c:c8:72:7d:51:ed:ba
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate pianezza.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pianezza.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pianezza.org
Other certificates including the domain name pianezza.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for pianezza.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISBEjZfQUmyj4o6hpVpsI8kTA3MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDQwMTE1MzZaFw0y MDA1MDQwMTE1MzZaMBcxFTATBgNVBAMTDHBpYW5lenphLm9yZzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAMTeoWI0VBwp8JspnnSH0okT8aTAkuFGuimE rnYHdZ8PhBNhsnN9DG+j+ih7ggZbDaRUhP1avTOYa5DodvDaLBKmoAygEvlG5rWv GQU1FUB7V4lEebpaFHWY0k+7jxlIgoc+xMYjcMb8FnqKqntJQL9yX8O+5ZTRHcKS TtVx49B9QU5UiedH2g27FotI2SxoSvvR6zmSTAQIfR8reoH9H9U/LEkSpPvbu+ka HnRpQeBkDAO1hq5CsbRNMHauLkHzL7AhmYrDsqps9QacvYaWLOFbpwTljoDk+9U0 irprzkaD/bSzjEgVDqOcMxwqQtkyu3Gi/2N0fI/cNwSdl54lD0wVV8guEB1bqlhj Rcbae8NO4JU7/bDQBtStOB+OIeHah0mlkUbTEkhVXc0nCDgsqs3YfkMFSsNiOYhw pnoeFmNQQMl0TKD2sr1Z7UTBqdAN8OjvII6N6vEoTuoYN+qsyEndDwZ9YM9AYEgc BvzUP/NvA5Fzv4IJUC6zYeObz3WouD1Qw+ltqt8kKaU73yfyvzFx4Qn8BK7sYWwR soe6Fu3W0iSCo2aKb0lUajpYcg2R/p8rBZ1Ny1XoD014OWbELDY0NLqKo+FsurUR Pm7jt5GGJZ+D2esrhIn6E5yBZsFqf2gurmuE0CAouaYm12PTYFxB2S+v7kqoKVf+ b63mjcFXAgMBAAGjggJiMIICXjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFB4yUU1M rH4xF8lGKElX+zkTZBqHMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMcGlhbmV6emEub3JnMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDx AHcAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFwDftJGQAABAMA SDBGAiEAhfSySiI/l/xcDYwpM1lqxagrA+mTkfwfkCJvyBJP3UoCIQD+rCAhghRI kMVWFHFcTurAbbc17v6o0zEIWfA5Ndml7AB2ALIeBcyLos2KIE6HZvkruYolIGdr 2vpw57JJUy3vi5BeAAABcA37SQYAAAQDAEcwRQIhANXyM4A0tvJi/sDPblEBppvR YRihOE5EemI2xNE89L0jAiAcAryhSea4aXiMPa4nUM/MYdDsB3nB0uhTdUxS+W7A hzANBgkqhkiG9w0BAQsFAAOCAQEAISrSvoVgMLwlnNiiJgzdgb874WkWi6Hym25C PQkPYI+mqT45dImXouD7oiJW9cSK/c2nPA2JjW/PIujVn4x7U8gzFZ8Wg76TeeMA vxUfcCcd99LznMT0RBVOrHstuG+B/pmBsN/nV1+G3kIXL88dVwHIVRoHlq1IBpzd SB7jndr8Q9FCj8ENiM8Q3FaCU3VKLCy05SEt6MsiP4BrZdKHiLVY/HMY3YnO+C1U L/72Y8H0tN2mHSvQyCLNNoHXOgjJYeSyhMt+ZuwurPjNlBSKi2hKhmXJmHM6TlqG fdLksioRilcNzm+lbGUpFSJ4DhMBj31L/Dp0RVVON+tdjLZiQw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxN6hYjRUHCnwmymedIfS iRPxpMCS4Ua6KYSudgd1nw+EE2Gyc30Mb6P6KHuCBlsNpFSE/Vq9M5hrkOh28Nos EqagDKAS+Ubmta8ZBTUVQHtXiUR5uloUdZjST7uPGUiChz7ExiNwxvwWeoqqe0lA v3Jfw77llNEdwpJO1XHj0H1BTlSJ50faDbsWi0jZLGhK+9HrOZJMBAh9Hyt6gf0f 1T8sSRKk+9u76RoedGlB4GQMA7WGrkKxtE0wdq4uQfMvsCGZisOyqmz1Bpy9hpYs 4VunBOWOgOT71TSKumvORoP9tLOMSBUOo5wzHCpC2TK7caL/Y3R8j9w3BJ2XniUP TBVXyC4QHVuqWGNFxtp7w07glTv9sNAG1K04H44h4dqHSaWRRtMSSFVdzScIOCyq zdh+QwVKw2I5iHCmeh4WY1BAyXRMoPayvVntRMGp0A3w6O8gjo3q8ShO6hg36qzI Sd0PBn1gz0BgSBwG/NQ/828DkXO/gglQLrNh45vPdai4PVDD6W2q3yQppTvfJ/K/ MXHhCfwEruxhbBGyh7oW7dbSJIKjZopvSVRqOlhyDZH+nysFnU3LVegPTXg5ZsQs NjQ0uoqj4Wy6tRE+buO3kYYln4PZ6yuEifoTnIFmwWp/aC6ua4TQICi5pibXY9Ng XEHZL6/uSqgpV/5vreaNwVcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 373238565762026508866130481982727131312183 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-04 01:15:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-04 01:15:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pianezza.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 803158099871082016083750951757582707597871799733651142439560585465612489344459928317932249167891235034791527130570196953005338701143888255529388724629442935687008245707943439203412433426750627758901366162143853791402284105960274124352617696498926371805101099183649451165422625007042436575509354221480699063045270042813288681251720117046113191658502957214516632386793144962015489294915719146921231370301079226902698639705710259172458067945052828541403456083928664727468932449026300936213250670775867233082756718434345815846169397664105248115287749482094033565104762351697359074667170242666079674793879667076557406589092832118513186793538221880792279898826123733179036152005415231513140598853928590026652329641474298882239008562820465107442645183631686525561908565603673260911686700226724328606755337684083852460790325550954350107216844604877195257761780119512684787925107702699796622834926498673234061570793669749563081834405457353726305096780388854270874883685065753335286943683732935000776145681742559113089714084265803962367344406140243548569512333453941245916839078825469025242373812372804921443728606251313562187452615621717626157889395403727617355347772475009568992582212978764558799938209743645074194591073162986791871074648407 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1e32514d4cac7e3117c946284957fb3913641a87 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pianezza.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077005ea773f9df56c0e7b536487dd049e0327a919a0c84a112128418759681714558000001700dfb4919000004030048304602210085f4b24a223f97fc5c0d8c2933596ac5a82b03e99391fc1f90226fc8124fdd4a022100feac202182144890c55614715c4eeac06db735eefea8d3310859f03935d9a5ec007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001700dfb49060000040300473045022100d5f2338034b6f262fec0cf6e5101a69bd16118a1384e447a6236c4d13cf4bd2302201c02bca149e6b869788c3dae2750cfcc61d0ec0779c1d2e853754c52f96ec087 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00212ad2be856030bc259cd8a2260cdd81bf3be169168ba1f29b6e423d090f608fa6a93e39748997a2e0fba22256f5c48afdcda73c0d898d6fcf22e8d59f8c7b53c833159f1683be9379e300bf151f70271df7d2f39cc4f444154eac7b2db86f81fe9981b0dfe7575f86de42172fcf1d5701c8551a0796ad48069cdd481ee39ddafc43d1428fc10d88cf10dc568253754a2c2cb4e5212de8cb223f806b65d28788b558fc7318dd89cef82d542ffef663c1f4b4dda61d2bd0c822cd3681d73a08c961e4b284cb7e66ec2eacf8cd94148a8b684a8665c998733a4e5a867dd2e4b22a118a570dce6fa56c65291522780e13018f7d4bfc3a7445554e37eb5d8cb66243