www.tavoli.co
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:74:8e:e5:b0:7a:cc:43:6d:2b:12:4e:43:87:23:5b:dc:98 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.tavoli.co
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:74:8e:e5:b0:7a:cc:43:6d:2b:12:4e:43:87:23:5b:dc:98Serial Number (int): 300999555348924806756102615125154846203032
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3b:c9:4e:87:4c:b7:e5:cb:54:50:44:3c:cc:d3:c2:b3:0b:d9:ec:cf
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 47:9f:24:b2:7a:99:c1:a3:73:77:d5:71:e1:94:ac:d6:76:78:a0:73
Fingerprint (sha256): f9:e3:41:19:18:42:4c:99:96:96:e0:7d:4d:68:12:aa:a8:20:e9:ef:53:04:a9:6e:c0:19:3d:8e:10:03:8c:7f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.tavoli.co
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.tavoli.co
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.tavoli.co
Other certificates including the domain name tavoli.co
(limited to 100 certificates)
radioterapia.co
www.itresponder.com
lyndhurst.menu
tavoli.co
tavoli.co
35479.com
www.k2s.ca
tavoli.co
organicpestcontrol.net
www.ettore.co
soccerball.co
www.energierinnovabili.co
www.monedacrypto.co
walky-talky.com
www.poolniex.com
nationalpensionsystem.co.in
cantonesegirl.com
www.aus.pt
tavoli.co
www.tavoli.co
k-z.com
www.virals.in
namorable.com
www.boomcomicbook.com
www.mirella.boston
ballerino.co
www.tavoli.co
www.itresponder.com
lyndhurst.menu
tavoli.co
tavoli.co
35479.com
www.k2s.ca
tavoli.co
organicpestcontrol.net
www.ettore.co
soccerball.co
www.energierinnovabili.co
www.monedacrypto.co
walky-talky.com
www.poolniex.com
nationalpensionsystem.co.in
cantonesegirl.com
www.aus.pt
tavoli.co
www.tavoli.co
k-z.com
www.virals.in
namorable.com
www.boomcomicbook.com
www.mirella.boston
ballerino.co
www.tavoli.co
Certificate
The complete raw certificate details for www.tavoli.co in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUzCCBTugAwIBAgISA3SO5bB6zENtKxJOQ4cjW9yYMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjUwMTU4NDdaFw0x OTA4MjMwMTU4NDdaMBgxFjAUBgNVBAMTDXd3dy50YXZvbGkuY28wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQC48YhUjrlAavDY3yHdWLWMh24DJpIJ4ugK LHabginOGdQPHgp0dagZ60RChALgUCbqyY0mxvvXWKjHaARDZnrN9GNnpEgftjsP WFtztYOi6YRobQBO7qR68bO68QTNaX+8vBzSfEkNPqR0bZRV1X5kGxbYVyxow8wy PaIJ/By0JzNboERk58iuBx+ASyrf6Q15wzEeVIl0dwoZqBnkaGrfG11k5/3ReoIc NJeP5TnhhW9dksld5gUV5k4wADmqh0MnltNOSHNS5Yn/mHYWq9RZ9j4pzLuwQunQ 8gOK/y5v8aSB6ZxOct2WfmRxyCE9/rjsD4YUSyHYH2D0aEdfvYTf7+i76OhHdKoH pRI2Bod4+trEhIVCOi078BB3y03N90aJXyrHGvCjpcQTCC1qhmcrIQ6zOEW1Gbt4 dVeVLTwhjqaRI6h0zfmAbFgGwqHhEsEqJXfqSI6gEMFyH2kKYVxSpjhK3bRdtt+f 5vvARd5e06kxg+7uOo4RAnL9dz1IIgePKIWLqr8e4AR36JvueQvyRKnqXbXqh8qz rn3aXrXo96wlrV1Hjcpz3VUj+tSyItKwkp8i7zhVjm60fHz5tL2Knmya6aYvy2oU iPpotRn8YyE9yat8H/CjLWq6BS5DSbPfPP7QcDQ/Wdh6dAi3pIKZODdaM4OMDvV2 plkya175CwIDAQABo4ICYzCCAl8wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ7yU6H TLfly1RQRDzM08KzC9nszzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy50YXZvbGkuY28wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHz APEAdwDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWrs7Ss9AAAE AwBIMEYCIQD/VhxI5K7JEDsKaWNzf/3uVj7B0kZLiUNuPeG5BtPOmQIhAMQpNJP/ R7xE7hWkGMPoXyKYnOgfjAoQpsWkhh7gtMBpAHYAKTxRllTIOWW6qlD8WAfUt2+/ WHopctykwwz05UVH9HgAAAFq7O0rXgAABAMARzBFAiA4AnLoZ1DQRC/SihQlg/O3 VaCqhHMrw6ADlzTjD0wziQIhAJQZRh1PRbA4jdM7K+5FLDgJtt2y7y94Eh8jgwg2 huJNMA0GCSqGSIb3DQEBCwUAA4IBAQBaPEZZs0t8iHdP0hVEozt/IkB1MCdsakAi mwfGYw/aCaIyZYzOhUZeO2m7Jyukmyj7IGz57swjAlwV21PLIds+S/G0GcLflIyN rvmD0p6q67nxbtXpy7CT8GyIScyJnx9vSwHq+lR/gN751glfHVnxDFF4j1zja2vs rooMTJK5ZjA4TUZqkrtnMwuOe68iQkObsOaH7RqLqaUAjCP5yuz732s1etAZd51m +svTZ2rcNYStLbx8imKWRwd34nInnLo+NYu1Wzi8nR6LCVc3Ysbr+jKRePkNrueY 2f8767VMORKBIP4S0HW/Mi1mpVPMPULUCeQhTL0GN3R3MC7MoSe/ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuPGIVI65QGrw2N8h3Vi1 jIduAyaSCeLoCix2m4IpzhnUDx4KdHWoGetEQoQC4FAm6smNJsb711iox2gEQ2Z6 zfRjZ6RIH7Y7D1hbc7WDoumEaG0ATu6kevGzuvEEzWl/vLwc0nxJDT6kdG2UVdV+ ZBsW2FcsaMPMMj2iCfwctCczW6BEZOfIrgcfgEsq3+kNecMxHlSJdHcKGagZ5Ghq 3xtdZOf90XqCHDSXj+U54YVvXZLJXeYFFeZOMAA5qodDJ5bTTkhzUuWJ/5h2FqvU WfY+Kcy7sELp0PIDiv8ub/GkgemcTnLdln5kccghPf647A+GFEsh2B9g9GhHX72E 3+/ou+joR3SqB6USNgaHePraxISFQjotO/AQd8tNzfdGiV8qxxrwo6XEEwgtaoZn KyEOszhFtRm7eHVXlS08IY6mkSOodM35gGxYBsKh4RLBKiV36kiOoBDBch9pCmFc UqY4St20Xbbfn+b7wEXeXtOpMYPu7jqOEQJy/Xc9SCIHjyiFi6q/HuAEd+ib7nkL 8kSp6l216ofKs6592l616PesJa1dR43Kc91VI/rUsiLSsJKfIu84VY5utHx8+bS9 ip5smummL8tqFIj6aLUZ/GMhPcmrfB/woy1qugUuQ0mz3zz+0HA0P1nYenQIt6SC mTg3WjODjA71dqZZMmte+QsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 300999555348924806756102615125154846203032 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-25 01:58:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-23 01:58:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.tavoli.co' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 754503597558849695607229508449843573748217454003272886340647397010303296767179912217283551397384118816369458087932926258060601112622646279862871191661630526131397820633580254468798685589913346879699416610197295920892671803301686941656564638034183984875567410242405789779065679641370814562559199741379119683136931595550140237743018260509096450269413193425981421121038728914133753378625794995691262541778352254457597483460387994442777755863007034656207758742549551695668482653834604845748437165972154918859757520442399792863849222220288881764415793888027298165172443652749497852903742508046437243515763956340316737922380384529243750168231646529776107782670992632986704949588879239386063004558749092290602439000742997649760751852011488581796488517902644803860251047628125171378322903941431494302944459845764562886793437273165653192021675986966567521524712803234461877277706914051832905939104254317598229426840259768280034995266114607265852924272746854112367037262076594617796432632029925559121023653203579205045532781300132213106157097640972168096446181381683340546711876590549247013557511050771181318527986930747088718358341213432949194989121727846916555999249881294455004599736254033490122155444121243905711769545594212723570545457419 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3bc94e874cb7e5cb5450443cccd3c2b30bd9eccf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tavoli.co' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016aeced2b3d0000040300483046022100ff561c48e4aec9103b0a6963737ffdee563ec1d2464b89436e3de1b906d3ce99022100c4293493ff47bc44ee15a418c3e85f22989ce81f8c0a10a6c5a4861ee0b4c069007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016aeced2b5e00000403004730450220380272e86750d0442fd28a142583f3b755a0aa84732bc3a0039734e30f4c33890221009419461d4f45b0388dd33b2bee452c3809b6ddb2ef2f78121f2383083686e24d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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