rivestimenti.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:b5:b4:30:73:2a:89:d0:82:25:cb:25:dc:b3:0f:8a:04:5b was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=rivestimenti.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:b5:b4:30:73:2a:89:d0:82:25:cb:25:dc:b3:0f:8a:04:5bSerial Number (int): 323167478813308435118653372890175261770843
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: cf:a3:dc:4a:42:45:81:d8:c7:bf:2f:0c:b0:2b:ff:a6:da:21:59:96
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 49:99:37:a4:fe:44:e7:c7:be:86:d3:17:f4:16:56:a8:37:60:c7:1f
Fingerprint (sha256): ef:91:41:00:22:e3:df:24:61:01:e5:83:a8:b1:4b:2e:77:bd:41:49:89:59:88:68:ef:3f:c7:d0:a7:9b:29:3f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate rivestimenti.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rivestimenti.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rivestimenti.com
Other certificates including the domain name rivestimenti.com
(limited to 100 certificates)
841.me
www.rivestimenti.com
www.rivestimenti.com
motocompressori.com
senegalese.bible
rivestimenti.com
rivestimenti.com
rivestimenti.com
www.rivestimenti.com
rivestimenti.com
www.rivestimenti.com
lighttool.com
rivestimenti.com
www.rivestimenti.com
www.rivestimenti.com
adzxyz.com
fortworth.wedding
rivestimenti.com
rivestimenti.com
www.rivestimenti.com
rivestimenti.com
www.rivestimenti.com
www.rivestimenti.com
motocompressori.com
senegalese.bible
rivestimenti.com
rivestimenti.com
rivestimenti.com
www.rivestimenti.com
rivestimenti.com
www.rivestimenti.com
lighttool.com
rivestimenti.com
www.rivestimenti.com
www.rivestimenti.com
adzxyz.com
fortworth.wedding
rivestimenti.com
rivestimenti.com
www.rivestimenti.com
rivestimenti.com
Certificate
The complete raw certificate details for rivestimenti.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgISA7W0MHMqidCCJcsl3LMPigRbMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjUwOTAyNTlaFw0x OTA4MjMwOTAyNTlaMBsxGTAXBgNVBAMTEHJpdmVzdGltZW50aS5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDCb35w59N+ohRmm+7wriuqeeADe7pO 4pAO9xTEknv2mxeg6tgB+Pa/HTZOwNrsvOJM1xHg6WzsDOz5SMeYLzm3hEBoeLWX iHCc7fUwTipock3YNszfG7xfksfCdH12uZOXOlEW7HK0Wco3LaUpH2Vad4oi56z3 ilunVYtFs2HbVRcpmscNGLpaNXSqcrzd7P3m8s2Pp7EV1gIg7jVazTCTYxtnM4O7 J27qvtD82PSqngCQa4h7Ccl/ARiSUorV/71viffh9g2quabSN/HPD6E6v4+fHjHj br5YLezQZkcjJQhY7emQffxrAvWi5xC7rqRiqIzLINRXZPjzBTDYXYMFsqOySDhy Uxo8l/MWW2rsKhldYXzNJfpDVv8wGi6a7++cODLzLxWHWlBoVanrTmDQ21BBXKmv NTmvkLCSbEZHXg3N1YyMj04PDwYeXYDbRCDFmQxJGvXxbng0ccjhrjCqX/JGAY5c 3hhM2UP4qxwvR16ibzE6MwhFjFz1HrcfICh2yF2lgM29kQL1o72zkjg34tJ+q14U U9VD9yII11tey9oP23mVusJP8+x1+Xt/B6+vlMOReQLiV+zLF2MOWFhF/D3RT1uY 7ZcXmSvem856INVh680bMmTiS/yj9oY9Ptc3tPjXnYT+BUluE2GLGFjs2uGuIjN3 rMMBUw8XNwBN8QIDAQABo4ICZTCCAmEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTP o9xKQkWB2Me/LwywK/+m2iFZljAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHJpdmVzdGltZW50aS5j b20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQC BIH1BIHyAPAAdgB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWru cYvEAAAEAwBHMEUCIQCIraUlKs/Qlo3pG+tDgzr5u/QuEMhanHBzPSP7hXiWygIg E39rNs0xZSD5h4mzQ7jfOhimP26cqWXb7g1CuafGeFsAdgApPFGWVMg5ZbqqUPxY B9S3b79Yeily3KTDDPTlRUf0eAAAAWrucY3UAAAEAwBHMEUCICZvJv15fr8bJtF9 0kl/hEVj8TbM+wYR9bKsgI6fKuCPAiEAoc0EC929zIOWccvNrxOp2fWMfyzmrquM S602Tg6bwIMwDQYJKoZIhvcNAQELBQADggEBAGhJRsUH87m42bIxLHWYrlgy3WuR kjdkQg42ttfIq7BEJz/f+1e9qxzQASlZP3kH3iOgNrwq5fFokYbf4gVknPYGxL/9 7y8Xq3eMxCEjaICkc/quzeD/FYqopaA/E0XHDUPMmKRv7+SE7Klk1DeS1ETcCRV7 wq7Z3CfXHkdA9/hTEl0URMKv+o5QsSReP3ndF/6d0aZ4kenPB3QUcWoqhO+zanZF mkgqSNRO5aecVaufnc9EuLlZsgM+UCjB+5kuy9Qb1mW1AH5aab+RxgPUdVJ+aW/r qa6tkRPgGHOYZu7v2PeeK7EpORJ0zXB+SoC1eOePEMEhimyKnYxCTZ8xSxQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwm9+cOfTfqIUZpvu8K4r qnngA3u6TuKQDvcUxJJ79psXoOrYAfj2vx02TsDa7LziTNcR4Ols7Azs+UjHmC85 t4RAaHi1l4hwnO31ME4qaHJN2DbM3xu8X5LHwnR9drmTlzpRFuxytFnKNy2lKR9l WneKIues94pbp1WLRbNh21UXKZrHDRi6WjV0qnK83ez95vLNj6exFdYCIO41Ws0w k2MbZzODuydu6r7Q/Nj0qp4AkGuIewnJfwEYklKK1f+9b4n34fYNqrmm0jfxzw+h Or+Pnx4x426+WC3s0GZHIyUIWO3pkH38awL1oucQu66kYqiMyyDUV2T48wUw2F2D BbKjskg4clMaPJfzFltq7CoZXWF8zSX6Q1b/MBoumu/vnDgy8y8Vh1pQaFWp605g 0NtQQVyprzU5r5CwkmxGR14NzdWMjI9ODw8GHl2A20QgxZkMSRr18W54NHHI4a4w ql/yRgGOXN4YTNlD+KscL0deom8xOjMIRYxc9R63HyAodshdpYDNvZEC9aO9s5I4 N+LSfqteFFPVQ/ciCNdbXsvaD9t5lbrCT/Psdfl7fwevr5TDkXkC4lfsyxdjDlhY Rfw90U9bmO2XF5kr3pvOeiDVYevNGzJk4kv8o/aGPT7XN7T4152E/gVJbhNhixhY 7NrhriIzd6zDAVMPFzcATfECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 323167478813308435118653372890175261770843 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-25 09:02:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-23 09:02:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rivestimenti.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 793227728374752708491456403008325330966345942364727044458795089396884111995941617687613165629987543588622018546386346950830208436378586003809912814610139385665119375447299539881819707207779778931602501125135747357591058360838260960306898923318369960595015442862797790769403728151956616939456574347222506706471139673202127935621243018636293188820062441664968759828839472685826188063717214845521872670745615980941424570629834857236806866507747361783916048384097536305383022734686811376821396163714949357246938247160387451868443412943013272602091195549667241806176097359300552406971169719089480289996896917500991951054263395707090595244692130139930250075103226793243543193628175048185315489078375779498665116314317944137606845393211761270938548354252465832979044027692246307105267181212880476734400226036474635436290002435930508106632834538163541762184526835447516002059199628602615964370047500609249815056618928767495929936497299515286888421988404698698608641364552803276360799302699301804857009657240438944658635643318543235538989816120637505004403275488555056345742309209595709386774294991935935254080323798717432270933972235129722311089796885483174072484018750427195562291501519773561335835327446055033959572706587230735407136132593 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cfa3dc4a424581d8c7bf2f0cb02bffa6da215996 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rivestimenti.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016aee718bc4000004030047304502210088ada5252acfd0968de91beb43833af9bbf42e10c85a9c70733d23fb857896ca0220137f6b36cd316520f98789b343b8df3a18a63f6e9ca965dbee0d42b9a7c6785b007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016aee718dd400000403004730450220266f26fd797ebf1b26d17dd2497f844563f136ccfb0611f5b2ac808e9f2ae08f022100a1cd040bddbdcc839671cbcdaf13a9d9f58c7f2ce6aeab8c4bad364e0e9bc083 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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