pigiami.com
Issued by R3
About this certificate
This digital certificate with serial number 04:09:28:b0:62:72:37:98:c5:49:07:61:ae:f2:e3:f4:30:72 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pigiami.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:09:28:b0:62:72:37:98:c5:49:07:61:ae:f2:e3:f4:30:72Serial Number (int): 351565769990133289570652675902980914163826
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 9f:8d:56:b5:a2:ec:00:a8:ac:d1:83:2f:af:9d:ca:81:0b:96:10:a8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 13:95:1d:36:6a:ed:1c:72:be:f8:1f:95:43:22:9a:92:f0:cd:0e:32
Fingerprint (sha256): fa:33:45:5a:67:83:7c:7b:c0:fe:34:aa:a1:1f:64:85:d5:94:fc:59:05:56:d0:81:81:62:7e:74:76:4f:ec:22
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate pigiami.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pigiami.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pigiami.com
Other certificates including the domain name pigiami.com
(limited to 100 certificates)
pigiami.com
www.pigiami.com
pigiami.com
www.pigiami.com
www.canosadipuglia.com
bonsaifertilizer.com
pigiami.com
www.clowers.boston
www.pigiami.com
pigiami.com
www.pigiami.com
karamela.org
www.pigiami.com
pigiami.com
39782.com
pigiami.com
pigiami.com
pigiami.com
www.pigiami.com
pigiami.com
pigiami.com
www.pigiami.com
pigiami.com
www.pigiami.com
www.canosadipuglia.com
bonsaifertilizer.com
pigiami.com
www.clowers.boston
www.pigiami.com
pigiami.com
www.pigiami.com
karamela.org
www.pigiami.com
pigiami.com
39782.com
pigiami.com
pigiami.com
pigiami.com
www.pigiami.com
pigiami.com
pigiami.com
Certificate
The complete raw certificate details for pigiami.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4zCCBMugAwIBAgISBAkosGJyN5jFSQdhrvLj9DByMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTIxMjEyMjBaFw0yNDAzMTExMjEyMTlaMBYxFDASBgNVBAMT C3BpZ2lhbWkuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2mdC kS8W6v7IypkWVCGsV+GSZu9AMT0tgQNqRM9bdmhbe2pJ0mavHidMo54pZ4RetfIx sOphcMg4dLaPbcu+2eSJfwiIg8xo+qkwdEcKLsrsSOzl7JrRYJrDN7Xc+88Z5YCA N+inrggAoh/6twHkZg85Hu6luSwDYSIZXHyfZv9zfywRsc64KNBCizbVZWFOpSHB XqEhkitAQMOS7TY2QrRIDnm7+yLqC5/FrGAj6+RL6tWpCkiU0bNwH6ez4J0HkhAW 7ZcZLkyT16RyHUu2wNBqsYNqCwthHnAxXKo5a8MenFILP3XDAhAi4iaHWl0ouAhM FiBhP59uT8w6ibaAURASnu7PQr1YlIN25qyE1q9TH/yVUPB0EReXwjuUC+rj1q5W 7e6m1bMM2x23Lb5WhFritFn1HFkBbTFElhGUzXCduEBiqx1xiVZHp+qGBCFQxdGH GqIVhEHpbZ42L91/hUc3w2a9CqvBSfCT8xnY9QVjO+HTFN2OERgHwNAUvVeO1eT7 yxbSr6TJ0ds412N7hiPwxDp1ZwxCugkq5JyTKx9y1vZs5k7OtoTMjV3RHh85E3r9 dKQiOUoVqHZDbE+RSoZxY+a4b1iLC2hO/9onZsW8jmuIuxg0K5GJZ/g8ilN4XPP4 xvbIP2AW633dEn0QumDJsFR+lABv37PsAzSggcUCAwEAAaOCAg0wggIJMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUn41WtaLsAKis0YMvr53KgQuWEKgwHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wFgYDVR0RBA8wDYILcGlnaWFtaS5jb20wEwYDVR0gBAww CjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgA7U3d1Pi25gE6L MFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYxeKC4PAAAEAwBHMEUCIQDWttqcA5U/ PlCXMFRqNi4r3cleqPZtJtauQf/03HuGxQIgMsrfkfA84FyV4fT18r4AxHAsC0g8 vuJZXrR+5Pmtnx0AdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAA AYxeKC4RAAAEAwBHMEUCIE9gFw/rOsBs6KLw/OHNFvE1HGa6aP7kldZzs3gMYQyU AiEAx7Z/Z/ifrEHXwO+dCy8a9Ck9lLEh7HNsFeaPFArov30wDQYJKoZIhvcNAQEL BQADggEBAEuey3Hcbz2UWCOTzDeOyfKWLzHiSlDCAS0a9BXXa04xB5iG3yXhyVuM bqUTHqV/lovA2SC7SEBBeTNZxMLj1zljtIn9JusRdOL025+gJiv88dgimYX2IYnS 6KQ0o4CjOm32vzUK+1A2DrDdE2uyTw/ZV6xev6bnR4jK14kckSu5hJJPyy0RoD9h nlBxFSNSQJ5e1SmzcuMVXHBwcxBFdGXbqQiVaM6b7o0TN+ZPZM9hEXxMFOeYQECV 9xiai+T03/uhXVDFUJo3qCG3rKgdZgfgM95X0fI0OuaH5yIBNKcWZI15JTWq2uGL pD7JRCdzaEBAtp0ZjoTERlZWNxcSwJ0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2mdCkS8W6v7IypkWVCGs V+GSZu9AMT0tgQNqRM9bdmhbe2pJ0mavHidMo54pZ4RetfIxsOphcMg4dLaPbcu+ 2eSJfwiIg8xo+qkwdEcKLsrsSOzl7JrRYJrDN7Xc+88Z5YCAN+inrggAoh/6twHk Zg85Hu6luSwDYSIZXHyfZv9zfywRsc64KNBCizbVZWFOpSHBXqEhkitAQMOS7TY2 QrRIDnm7+yLqC5/FrGAj6+RL6tWpCkiU0bNwH6ez4J0HkhAW7ZcZLkyT16RyHUu2 wNBqsYNqCwthHnAxXKo5a8MenFILP3XDAhAi4iaHWl0ouAhMFiBhP59uT8w6ibaA URASnu7PQr1YlIN25qyE1q9TH/yVUPB0EReXwjuUC+rj1q5W7e6m1bMM2x23Lb5W hFritFn1HFkBbTFElhGUzXCduEBiqx1xiVZHp+qGBCFQxdGHGqIVhEHpbZ42L91/ hUc3w2a9CqvBSfCT8xnY9QVjO+HTFN2OERgHwNAUvVeO1eT7yxbSr6TJ0ds412N7 hiPwxDp1ZwxCugkq5JyTKx9y1vZs5k7OtoTMjV3RHh85E3r9dKQiOUoVqHZDbE+R SoZxY+a4b1iLC2hO/9onZsW8jmuIuxg0K5GJZ/g8ilN4XPP4xvbIP2AW633dEn0Q umDJsFR+lABv37PsAzSggcUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 351565769990133289570652675902980914163826 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-12 12:12:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-11 12:12:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pigiami.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 891007969953407287927436807082447668538433465136728739539008505521094097887650588716070239039676285234292858071885189121808242195857434815422441973957499917098944088328993549650781255179199071484141118081920720373621006478816785369438912357417118327793866385004074314182908350295668796137725454060114403544750448321300822250367094521951402776531626629593986767683719009391703766989867338595937432874213406724389854260977521321252223396887690590813617656636640181595531614452535045879748138960725278823779530557173663807439360883270122540476663073882963044068662759987349170896586677653321117303334239773740038279522392194863141354506784656488159760282672673206011140770307747289039895458845849863732710803220846391142326655324988257918154432612199496556291652769960172842819574200400056346187984340172360371253746352803331824135182389391661001674861890600045662472373091975284370512810810720724626131335155505925927557268523407334733746951519234509980363431831241083014229390620256481966836320684156008309680850539481865196059648602626545825975282493778428677448244908457818003812704902700569550279017487883639688569788623432762383443383266842266379210997840697777521621310757469163777232226596509596811557545827861766794984344814021 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9f8d56b5a2ec00a8acd1832faf9dca810b9610a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pigiami.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c5e282e0f0000040300473045022100d6b6da9c03953f3e509730546a362e2bddc95ea8f66d26d6ae41fff4dc7b86c5022032cadf91f03ce05c95e1f4f5f2be00c4702c0b483cbee2595eb47ee4f9ad9f1d007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c5e282e11000004030047304502204f60170feb3ac06ce8a2f0fce1cd16f1351c66ba68fee495d673b3780c610c94022100c7b67f67f89fac41d7c0ef9d0b2f1af4293d94b121ec736c15e68f140ae8bf7d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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