pieveemanuele.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:46:06:e0:8d:6f:48:84:3e:34:9c:ac:80:b7:96:40:95:b8 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=pieveemanuele.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:46:06:e0:8d:6f:48:84:3e:34:9c:ac:80:b7:96:40:95:b8
Serial Number (int): 285165764790853976625575574096449042945464
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 25:25:16:86:c0:05:28:81:4b:1d:d4:56:6c:2d:8c:ac:76:1c:8b:2b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): bb:01:20:96:ab:2f:95:92:fd:7d:34:9d:13:cf:15:1f:02:d9:c5:80
Fingerprint (sha256): f2:77:27:72:b0:45:ba:ef:a6:e9:41:cb:c0:5e:03:e0:c3:9b:96:f6:01:e8:50:e5:44:3c:9f:35:33:9e:1a:a8

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate pieveemanuele.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for pieveemanuele.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

pieveemanuele.org

Other certificates including the domain name pieveemanuele.org

(limited to 100 certificates)
www.pieveemanuele.org
dubaiwedding.ae
www.pieveemanuele.org
honey.organic
pieveemanuele.org
pieveemanuele.org
www.pieveemanuele.org
backriverroad.life
www.pieveemanuele.org
pieveemanuele.org
www.pieveemanuele.org
www.fontanafredda.org
pieveemanuele.org
pieveemanuele.org
pieveemanuele.org

Certificate

The complete raw certificate details for pieveemanuele.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 285165764790853976625575574096449042945464
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-14 09:43:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-14 09:43:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pieveemanuele.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 669743573451873928065108172087895805040611440483035858124533366855355901915313460863810753170695825658536386669082460299660142213406792947875443660328227918721757264752206693673252878576609452066528711177440211196727287042930898330163978903686925797528691935107337187576302793687981235028307208657976269005473744184918921644934811564149960602385589908326153041700268711642729934144978170809346753531460191147241789295843058029430426078491604989140719329224284874089000572017366939704568670007684485088897881263027607155511580746369596839094092553564520703820105859369051049420372874099225777485096297454645980324265454089622313436132343250278335052271410285289909716643998477048236976079509353485967679540184023783440291741742071018450280116632496913154657742763349895846536928739374370208917750845835299270589475990045677688672860015841173291724772137861515073784240583973321087261279415653732515097285978892047216298128642837254839244591517237466528882044546231715081462229698304858415769560280857510780829776547886356476534327099056601082254437820897576018095761971010516468883391870021660304024677776736916772206328319000876420546500131769475073905862233858113271018044430075078829450411548095854638948376955822373791126622077317
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							25251686c00528814b1dd4566c2d8cac761c8b2b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pieveemanuele.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170434b6a6900000403004730450220281d69f9230de7d86b12f6c17958a56e2ee6ea1797c2d0eec2b8743890de4ea2022100b0576cfcb0118438cab201438707acf2cf74c693dedac45c258ca7865ee385bb007700e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e00000170434b6a690000040300483046022100f79efd4745315240d68fe16d06d6122b6d0471609df80ef23371eb3bec3a9bd4022100e875c87f8efe4ef3d99b015cd05b871ffec67a035c04e79c00320062dba1cab0
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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