biondina.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:12:50:b8:f5:cc:5c:7f:4b:f9:47:88:11:b4:13:3f:14:65 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=biondina.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:12:50:b8:f5:cc:5c:7f:4b:f9:47:88:11:b4:13:3f:14:65Serial Number (int): 267569239007523920521156109036719926350949
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 50:98:e2:fc:af:ec:c0:58:fe:f4:28:60:cc:52:aa:e4:ba:63:dd:58
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3b:2e:9b:3e:70:c5:68:f9:22:88:59:ab:bd:55:0a:f9:64:aa:39:42
Fingerprint (sha256): f2:97:a9:84:7a:d5:b4:6d:88:24:25:2e:d0:ce:0d:8e:bd:82:b1:9b:01:92:1c:89:34:c2:b1:51:33:19:e8:b9
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate biondina.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for biondina.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
biondina.org
Other certificates including the domain name biondina.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for biondina.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISAxJQuPXMXH9L+UeIEbQTPxRlMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjkxODMwMTNaFw0x OTEyMjgxODMwMTNaMBcxFTATBgNVBAMTDGJpb25kaW5hLm9yZzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAK0OBRd6DDtzNIVZPJu8QSrV2+izUh2b82Jj 97r6Ofa7uzfSroCAuwosW/20pkBg+PB+y/GJSZ7cIexxOYtpoXJaoBjEKzvhJR01 mnuGTQ87mq+9ownVIe1U0tovi1uZmqHCdrMf2fRnA8OMiI+VEElcOiKWOUHwC+1Q FCsF+i8jlftET3Bkgt3UpesKD4t6ScFmNL6RLYZm7eqbKIAwDrZm8OtXuhqzu7x/ 6TqanrclhlyAamaFsgc4od78fCn71Dsbr88BCeQJcyz++bWUdzfuhEYIZ40WGqYJ H/17mkP+iaTxELtPs66esIdm2cBguV1A+dhyJZDBs7kM27yvFPpy4E+oYHkBuZ2M PcOB7++GAkDjmZ2PBf69xX5aw3v0vnMC0uQFLmZ+XiOjZGYsb+KAzWCi8eA4uc0t Kk0+kWSsjruNCfR2OnL5h1LYGnqRx7iIZ2yKFnFlgkuKP6NnU/frEutEcuXk5doW XfEoV/+U9FfrCNw5kYDlnEDsGJTFyRdGE+f0s5F9lgn2SsuHT/YLIVHiCWED8C/B a/bFEjeG5h+inZ4CdXYM2nCzS2pKRroyh21ZcnccQyvcI/dYdRW/yCckIzj5pXS9 PfCUekAop142FS9WtQBBxoebPIAyMr1HgADgAvfGwqzBKx7E2oFPqmORPpNfN/X5 MvMFh35fAgMBAAGjggJhMIICXTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFCY4vyv 7MBY/vQoYMxSquS6Y91YMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMYmlvbmRpbmEub3JnMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFtfoB+pQAABAMA RzBFAiAsUPibgxkDfodQ6Owro2e5ZzmvfTlEoiea3ms3gq8sCwIhAIR/3n4Mv5Pj 3PGF+mPQM/i+KXvM7kjSHtLnheuimpiZAHYAdH7agzGtMxCRIZzOJU9CcMK//V5C IAjGNzV55hB7zFYAAAFtfoB/uAAABAMARzBFAiBq3ZrhYu31aEF8L4LAgCL0PSNr Q4rL4tHkUkspdJyAqQIhAJbqdJmvcTbe4e6EpEYww3xu1M07pBvJg0cFssV7BHBa MA0GCSqGSIb3DQEBCwUAA4IBAQAz+3Od4Fj7n+f5v2pWCuzy6wisvjypAX1pJHBw 788P2NvWlExU03eoeQSFiuYq3gSK2TUN3o2+3PZgpiDDyJUnCYB/IQIkXo+QV1PA Be7AZQUcZF08be0QojIj0glt9DL4Dm7Fq7f1HR9aPGLiJ6FEwCMDhxEO86f9SnOx eRWfTR1t5dqVN6sNYCJgnzrXp+KxFtAqX6HNpINekWihgzGWJhZjVtnZxObkk6V2 PsFgceGlvZRK8kdQv2F+Rk0BWH/hsT/eeF76spTzLqtbTSda1bI43y6zCB29BtOO CbLsP4NM3BbC9Rce8n5HOt5x45v5psLXEOwRKjcltUf70y9x -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArQ4FF3oMO3M0hVk8m7xB KtXb6LNSHZvzYmP3uvo59ru7N9KugIC7Cixb/bSmQGD48H7L8YlJntwh7HE5i2mh clqgGMQrO+ElHTWae4ZNDzuar72jCdUh7VTS2i+LW5maocJ2sx/Z9GcDw4yIj5UQ SVw6IpY5QfAL7VAUKwX6LyOV+0RPcGSC3dSl6woPi3pJwWY0vpEthmbt6psogDAO tmbw61e6GrO7vH/pOpqetyWGXIBqZoWyBzih3vx8KfvUOxuvzwEJ5AlzLP75tZR3 N+6ERghnjRYapgkf/XuaQ/6JpPEQu0+zrp6wh2bZwGC5XUD52HIlkMGzuQzbvK8U +nLgT6hgeQG5nYw9w4Hv74YCQOOZnY8F/r3FflrDe/S+cwLS5AUuZn5eI6NkZixv 4oDNYKLx4Di5zS0qTT6RZKyOu40J9HY6cvmHUtgaepHHuIhnbIoWcWWCS4o/o2dT 9+sS60Ry5eTl2hZd8ShX/5T0V+sI3DmRgOWcQOwYlMXJF0YT5/SzkX2WCfZKy4dP 9gshUeIJYQPwL8Fr9sUSN4bmH6KdngJ1dgzacLNLakpGujKHbVlydxxDK9wj91h1 Fb/IJyQjOPmldL098JR6QCinXjYVL1a1AEHGh5s8gDIyvUeAAOAC98bCrMErHsTa gU+qY5E+k1839fky8wWHfl8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 267569239007523920521156109036719926350949 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-29 18:30:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-28 18:30:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'biondina.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 706001846263334211689939180185916764420095334656967953615266060726281276694974033894416685974870094332950843020919310997168947589570734766870609473065287367748675199134968276179082257657597164175677445690486913472019127066121616271270468725644441004343398018078913654374481346907201601160133333985253937703882364701221338895647630449650001154014173636811010783424543930113932267005625315554297501404470194704801602548767407718133796023077494232150846693850796850114104341102378084259710464295690736777722918492064603914507692199314422203276553619468296014689570225621913789078716586457074358145309194345078913098352158579741275217583924037019767966273336752249142785467150297540541986825712876595742921758984445268743278202735928157100366641336374979262671929170665861105224150942051380700764627542585746493979036330088258074668579363647359625139551639766827789770884661861578888158722021780524129908117671223147345159000539602075847374716394069253824626594828328028327332775251647457223804762281999557739176787286681599412459862937695837886780316444230942411056091823834836494831617120539702421160940101598598445520246899885382235109328380950725019813421903090105776193168933308845546380605040310305150157006425368099445038192754271 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5098e2fcafecc058fef42860cc52aae4ba63dd58 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'biondina.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d7e807ea5000004030047304502202c50f89b8319037e8750e8ec2ba367b96739af7d3944a2279ade6b3782af2c0b022100847fde7e0cbf93e3dcf185fa63d033f8be297bccee48d21ed2e785eba29a9899007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d7e807fb8000004030047304502206add9ae162edf568417c2f82c08022f43d236b438acbe2d1e4524b29749c80a902210096ea7499af7136dee1ee84a44630c37c6ed4cd3ba41bc9834705b2c57b04705a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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