almeno.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:81:41:b3:b4:c5:c4:21:dc:aa:fd:51:94:a1:26:d9:da:f0 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=almeno.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:81:41:b3:b4:c5:c4:21:dc:aa:fd:51:94:a1:26:d9:da:f0Serial Number (int): 392432901967208122310317784777293255269104
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 7d:39:5b:3c:58:21:35:10:ce:9d:5a:d9:07:f7:70:5a:8c:9d:e0:4b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 88:6d:b2:47:77:76:07:ad:cd:f4:8b:f1:71:c5:48:e9:bb:ae:cb:e1
Fingerprint (sha256): ff:69:41:0a:95:02:c3:da:a1:3d:2a:df:ef:52:d8:53:c1:a7:1c:53:da:57:f7:6e:9e:ae:a9:1c:31:b4:0a:9e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate almeno.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for almeno.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
almeno.com
Other certificates including the domain name almeno.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for almeno.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTTCCBTWgAwIBAgISBIFBs7TFxCHcqv1RlKEm2drwMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjcxNjM2MzlaFw0x OTEyMjYxNjM2MzlaMBUxEzARBgNVBAMTCmFsbWVuby5jb20wggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQCeb0HhU+An+L6B9xwJnlJCJiSmu58XXRSuLtMt jGWCrY4nvFAaDAkQvE1TrKRgFmWt/X9cvwNqvZlbwwUORR5ia1vEvUeKHreV+pa7 0k7SSoclasmtP7A17ctF+wc8pCXd1RUdAlz+d9KP1313L3ymyZlD2cu7Z1VSJCJK 2T7fKzCJu+uOdsJHW75Pwpyh2uXiQhw7bh0PTTZL5BeGUZjaw2bYelAOx74kXm1n 7CE6DiYyFoMWGkHSwCAYTaej2pEnsmJ/xW4DM9GgpbYOGIf1NISrAUMQzAEcRCH7 poiaM46NK37p8/EJ8k4PTF4S8m+IjwxIpH8sabNa1Ltl+VMcYBqJ7U05/mInAGBb RIQYkBfj/8H6Ui+Y+r8MHnyfW6OMj2Aul6VyGBxxUvMIvPbJ98irsn40lyeIQn/p dZvLF7tnd3U4fOsDIk/8NOuY0ad5cT3ftI/cZ0klKEPJ1V6XZ09TH+3d6TKE4osf PCvcWFVnDsLaP0iiU6vhaB9FY0ZgpZkK9ipsLtb40AicBAbTwG186zbDA6CIn0UO llGpBaZ3piFQkVk1SDR3cgDph693QTfrem1xcs/y5dNhZCwEC5LAzDEsMGXTm9B1 YAz6qQv+dBXwsVy2xhzKGFLsYIoTHn/bi6hQd5o6f921QbSizymzkHkY3S+/F6cW U+buHwIDAQABo4ICYDCCAlwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBR9OVs8WCE1 EM6dWtkH93BajJ3gSzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCmFsbWVuby5jb20wTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwB0 ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAW1zy8/DAAAEAwBIMEYC IQDfSmYpGKqZ9uh1W+MawCmfyNCbrzWOTDcsvcyJeXC54QIhAK14bhuDw/oOVG8a MnDiLv/HwbchW098Gr/AhaT1QU36AHYAY/Lbzeg7zCzPC3KEJ1drM6SNYXePvXWm OLHHaFRL2I0AAAFtc8vPsAAABAMARzBFAiEAjMTyAbOtD84P/kUZIaSB7vwnk4tF QdOTiG9kJawKzvwCICYMdGovqmJqdcu/3o//Ze9LsfbhH0yOv9chMAPMC0fCMA0G CSqGSIb3DQEBCwUAA4IBAQCQYLvukcPi2VPjDwJUyMTm0gwK9yspHi9Pv1nRF4Nl k5kFrZxNg8vRvfN496Dd23tsmDte+1dTdlBXG4vzdHuCTadtB/PWo113336++KbF X9g43rBt55mYnxPS9JMh4W6aQOBDPyyDgjZZXhuCXdCAh8O6zs0kszORXBAKklBl p00FAdTo/cusp12pG5f7H7N5jHXce6uK9cbZKecD+Rn1ryHI5EvXGU1Bvv8+U/0z 6svnQsY+lwP58GNGSIbKR1L/KuDN2aceMhcZHscWUp4QiC4UzlgTAuwP6ubiIbm1 hL0B+oPedlzasw+iCUVZPswh8Xl6rT05FSqAMl7dS5E2 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnm9B4VPgJ/i+gfccCZ5S QiYkprufF10Uri7TLYxlgq2OJ7xQGgwJELxNU6ykYBZlrf1/XL8Dar2ZW8MFDkUe YmtbxL1Hih63lfqWu9JO0kqHJWrJrT+wNe3LRfsHPKQl3dUVHQJc/nfSj9d9dy98 psmZQ9nLu2dVUiQiStk+3yswibvrjnbCR1u+T8Kcodrl4kIcO24dD002S+QXhlGY 2sNm2HpQDse+JF5tZ+whOg4mMhaDFhpB0sAgGE2no9qRJ7Jif8VuAzPRoKW2DhiH 9TSEqwFDEMwBHEQh+6aImjOOjSt+6fPxCfJOD0xeEvJviI8MSKR/LGmzWtS7ZflT HGAaie1NOf5iJwBgW0SEGJAX4//B+lIvmPq/DB58n1ujjI9gLpelchgccVLzCLz2 yffIq7J+NJcniEJ/6XWbyxe7Z3d1OHzrAyJP/DTrmNGneXE937SP3GdJJShDydVe l2dPUx/t3ekyhOKLHzwr3FhVZw7C2j9IolOr4WgfRWNGYKWZCvYqbC7W+NAInAQG 08BtfOs2wwOgiJ9FDpZRqQWmd6YhUJFZNUg0d3IA6Yevd0E363ptcXLP8uXTYWQs BAuSwMwxLDBl05vQdWAM+qkL/nQV8LFctsYcyhhS7GCKEx5/24uoUHeaOn/dtUG0 os8ps5B5GN0vvxenFlPm7h8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 392432901967208122310317784777293255269104 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-27 16:36:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-26 16:36:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'almeno.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 646356771987097711571099666798153449536062392998522579056459196318329866789273511780519627558846368527853627423555760591217584806452538693838533170371660019249916076367915670978739914795010734323762369481104936178209493595708270465463885437256516967663416540167034773846800172804721715587778488345022253703402014771171083775591348710746228299984829610327325377867675816949934823840336420107593960940530522225427483911285731428432817537799544180173190681388084095000740812882405616821133378229911269307619947807117051225487016660968227255643452932378718394522882643362491080438464970980417566027635751432717368274911859745676421415792401055939242391550506967827106701889872078242460809619405184632399247780583969645535436569342000845171840485854545232332170184285574114756734051483572572457462357298956201223613065190003505292433208938051055131925953624829541837583020576882056091389614041732635690765639311571902724232654628994232265444342729157871828472048067640905126006627535641876386089711618292350924526810100107624965050210646284494939260568724122417644121805534316951036898794233940862826562492225556901077834727272129631574863947550268672508011797432251624233927104019697450365204694537469391453880087354275320920794735242783 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7d395b3c58213510ce9d5ad907f7705a8c9de04b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'almeno.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d73cbcfc30000040300483046022100df4a662918aa99f6e8755be31ac0299fc8d09baf358e4c372cbdcc897970b9e1022100ad786e1b83c3fa0e546f1a3270e22effc7c1b7215b4f7c1abfc085a4f5414dfa00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d73cbcfb000000403004730450221008cc4f201b3ad0fce0ffe451921a481eefc27938b4541d393886f6425ac0acefc0220260c746a2faa626a75cbbfde8fff65ef4bb1f6e11f4c8ebfd7213003cc0b47c2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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