lozioni.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:d7:f3:98:07:05:bd:8c:14:ff:2b:e1:70:12:82:d9:cc:af was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=lozioni.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d7:f3:98:07:05:bd:8c:14:ff:2b:e1:70:12:82:d9:cc:afSerial Number (int): 334821358457812411489170807106017276054703
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 48:34:ca:39:77:c1:5c:0a:0b:92:e3:60:6b:17:ec:6e:94:4a:a1:8c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 2a:2e:9d:de:e3:31:69:c3:1d:50:fd:82:41:b4:d0:85:f4:06:56:ca
Fingerprint (sha256): f0:30:0c:ba:fd:88:79:6a:a9:76:5b:34:bb:84:86:14:fb:10:7c:39:2b:c8:15:78:4d:5b:80:5d:8a:06:d6:95
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate lozioni.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lozioni.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lozioni.com
Other certificates including the domain name lozioni.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for lozioni.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTTCCBTWgAwIBAgISA9fzmAcFvYwU/yvhcBKC2cyvMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMjgwMDIzNTVaFw0y MDAyMjYwMDIzNTVaMBYxFDASBgNVBAMTC2xvemlvbmkuY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAt6U+3HwlbEXcytCYsBYE5BljGoyt9tdFz7Mg o2khhQtGGc6b5ka5JkelweNhu5KEVlFttQO3b4EVxOYaC9RXJ+NTa2kYiv216vZR 5+uZVosGq78gRddtisow4fTHAMdl4ZV9BlRHztJyzq2WuDwWkngXYnB8OuatlSRK ljrmaoYKtcB12DnL17OdX/lqzAk5QLjKMSvvz81rQO2XKL0UMUnyf54dAaAp4AKi Uun25Vzt5ZKO93YT0Oj7B0zUvSIBWCnK++U6dl/k8+RUeHTNqk4QvkqxMPPAM4/k 11aroH7XNT/xbYhepiTuCcvacG8V/NbVd9oWwkbI9l2sn/Rwh+8wTfcafMMoXez6 qPIrJgofk5pMUivwPNyfXObOpHooN1MjgncziTujOG2arK2XgD3wmJBSQjdFNhfL leoQIUSGN4bHYuK0Y8YpH1uqkXwLLZ9kJk26DuXh0VmWjTwdLSDTxDjpTQbIsVRC C6qOcGNvxi5u0tJJITwZIvEHUv5DXa+Ny9j/ER9db9k9T7EwgMDWXSWqnQYAN9Sv 5ngJpldDB9+q0seSLePVLwff0rV7LQWIjlCcfnKIwZ3s/OwqLKjYzrh5/D7dVOn9 g34dD/9Aw+k6ouRxYYzu9jmU0yXCefC3AGwgdSa7e2OerAF0V4eQ/7efhkqxdium 65Yv81kCAwEAAaOCAl8wggJbMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUSDTKOXfB XAoLkuNgaxfsbpRKoYwwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAWBgNVHREEDzANggtsb3ppb25pLmNvbTBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1 AF6nc/nfVsDntTZIfdBJ4DJ6kZoMhKESEoQYdZaBcUVYAAABbq+bhkkAAAQDAEYw RAIgYnicdm7sRNb0EfwWzRtA/i7Ox+0MLf+mnk8YLcZJKJcCIEEebXud//ELZpql 0ojPDZKBeW9gXJucK0iHQ4k8jlrjAHYAsh4FzIuizYogTodm+Su5iiUgZ2va+nDn sklTLe+LkF4AAAFur5uGRAAABAMARzBFAiEA+hgERVpFJXCHp8FsaTbm9Ltd1qsF mO/K+Y8LpD3as4cCIBcY5IseqxXgsh7icqKNJN7vqHV1u0roC8jjZMU2a7i6MA0G CSqGSIb3DQEBCwUAA4IBAQBnKIQQOQB7O5L2xrc04CKDIXFe87X6eLBLqtH5knIq 2zN/nctaGmEdPbDjSHAO9QDZ29DbvuaCKaPhyiVhaGC+7EWpG6UOCw/bA/ifQoqU 5I8/jBL76g6qbu6C8wZrwMRJp/1O7o7LVCtc0vJmJiDddTWvIaD7K9ggqQ8Ochkw cHCXVRwb9Pb04vROzUUoi8Y9CWUKcEgxCupflRqXMaW6qUmLUEiCjdJ5sY1N7mIv Bx1uurWyoq/XrGQqp+1padWsdMm44l3D3KrF8mxPwhTdHQGcW0PlmDoDDUKmcM8I tlwdo7yKxImpoPl44UEF29u/rePIrhjmNKdU2/4J9uX7 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAt6U+3HwlbEXcytCYsBYE 5BljGoyt9tdFz7Mgo2khhQtGGc6b5ka5JkelweNhu5KEVlFttQO3b4EVxOYaC9RX J+NTa2kYiv216vZR5+uZVosGq78gRddtisow4fTHAMdl4ZV9BlRHztJyzq2WuDwW kngXYnB8OuatlSRKljrmaoYKtcB12DnL17OdX/lqzAk5QLjKMSvvz81rQO2XKL0U MUnyf54dAaAp4AKiUun25Vzt5ZKO93YT0Oj7B0zUvSIBWCnK++U6dl/k8+RUeHTN qk4QvkqxMPPAM4/k11aroH7XNT/xbYhepiTuCcvacG8V/NbVd9oWwkbI9l2sn/Rw h+8wTfcafMMoXez6qPIrJgofk5pMUivwPNyfXObOpHooN1MjgncziTujOG2arK2X gD3wmJBSQjdFNhfLleoQIUSGN4bHYuK0Y8YpH1uqkXwLLZ9kJk26DuXh0VmWjTwd LSDTxDjpTQbIsVRCC6qOcGNvxi5u0tJJITwZIvEHUv5DXa+Ny9j/ER9db9k9T7Ew gMDWXSWqnQYAN9Sv5ngJpldDB9+q0seSLePVLwff0rV7LQWIjlCcfnKIwZ3s/Owq LKjYzrh5/D7dVOn9g34dD/9Aw+k6ouRxYYzu9jmU0yXCefC3AGwgdSa7e2OerAF0 V4eQ/7efhkqxdium65Yv81kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 334821358457812411489170807106017276054703 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-28 00:23:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-26 00:23:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lozioni.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 749208235679337006896375047300096683880295677087653189728335311679349480392714823171093901213872384802327324859063131048521625186774275029991664413298276087208231056485095330196338796271358434037064476941867501206454663229926150946865950772183117520255990779483711485843792817825941903778410076244126847683200222420044018743950170318965055001491974502718718326209038251239278649037617521227450191038950209475699119575482458434207258048112767618159213279253202147166669759902927941027545207845478873621746656659795055400962236794889186264512875602128554415203443889137754686147336982141733463968939443187024172245489797487907753290081718782050453658951319174052264585197786646796950526877197779532844651843669108495049210727609176919883938602834940720305271564707790338055576866993250413144115177283345019048445842154963841559533809470390691953004963892172160457769136718546871228441913470478809911487671623065414733494714777562471221632157042895991796361772736107184167192325974692580179144562564208115990719176204636368649340598795024736566427000694101525348909022846341768487935193750145572781664579163114465687126102700460089868537806688800219898194561524676267312762958511597329502200048749730818446652230903912862242679093719897 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4834ca3977c15c0a0b92e3606b17ec6e944aa18c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lozioni.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016eaf9b86490000040300463044022062789c766eec44d6f411fc16cd1b40fe2ecec7ed0c2dffa69e4f182dc64928970220411e6d7b9dfff10b669aa5d288cf0d9281796f605c9b9c2b488743893c8e5ae3007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016eaf9b86440000040300473045022100fa1804455a45257087a7c16c6936e6f4bb5dd6ab0598efcaf98f0ba43ddab38702201718e48b1eab15e0b21ee272a28d24deefa87575bb4ae80bc8e364c5366bb8ba . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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