gianmaria.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:b7:58:7a:59:69:0f:93:0a:f6:23:87:40:0f:f1:8f:a0:68 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=gianmaria.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:b7:58:7a:59:69:0f:93:0a:f6:23:87:40:0f:f1:8f:a0:68
Serial Number (int): 323726138279116524427458818070794843693160
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 06:31:28:0a:c6:19:5f:b1:28:e1:b6:20:f9:94:c2:c1:db:c8:dd:b6
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 1e:ec:ad:e4:89:07:99:a8:8d:19:c8:c5:79:09:a6:93:01:16:ac:78
Fingerprint (sha256): f7:2c:85:73:82:51:80:ee:59:c8:01:fb:6a:eb:b6:fe:5f:d6:ef:74:9b:d5:80:1f:5b:92:e2:98:92:8c:98:98

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate gianmaria.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for gianmaria.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

gianmaria.org

Other certificates including the domain name gianmaria.org

(limited to 100 certificates)
www.gianmaria.org
www.gianmaria.org
www.gianmaria.org
www.gianmaria.org
gianmaria.org
www.gianmaria.org
gianmaria.org
gianmaria.org
gianmaria.org
gianmaria.org
www.gianmaria.org
gianmaria.org
gianmaria.org
www.escargot.info
gianmaria.org

Certificate

The complete raw certificate details for gianmaria.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 323726138279116524427458818070794843693160
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-23 07:59:04 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-21 07:59:04 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gianmaria.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 833622001182583146313469987220275829999124583994310038376029903021049286967037996999526048136484138672009626480380246691059894154886772524431800385149493099019733114214423222626589495794476565218700566514649642537127947078634899977997526534379929758144500025531283096053606819317419197125809008077351893947736233718604737647478221330158943966109663203317917304327680533444260669694106366301515428952723461375802235998875476465413253857705780714599022154905444494214666872701574461754290690327126579305110739730717139393143223137554963720175541095519937624040702065076745012088430902313189599817659142329414600898573204875773256472794148876661380445203452856272475602897824743860428988916131918690591934563228353851394177591683010387016680477696712462879930011844880076913739380045163522195087746613699844439429615757125043728106413321086771735986972060083598575614152753958643148049852232512782001093431522989317928617521334452395099904032063892924810145625734061825367393960006758587360420311176290920167088656998839398579449440708936394648473267095193748968585581023158445556201770854470370013701036726650417142142227879674048999924797697556251803129766210563884948003739612663134885990318074169220598821614713866379618091992149863
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							0631280ac6195fb128e1b620f994c2c1dbc8ddb6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gianmaria.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000169a9c66336000004030047304502210097492e238b985104c619e831b6efc3d2436d4f72d0b3beaeefab0ee3c686bac202201488bbbd4e4e7edab44db30d2f73785b96b17290781f46f21446f3fbd4efdc0d00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169a9c6633d0000040300473045022100ee0f3ba34af99aaf5f90cb09ba12f335bbb93cba2d70941616cf0fd10c19821f0220236c11d13badc905bdd12f63b599aebad84a2b58c843861dd0cc0d8a67d3eee3
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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