DV SSL/TLS Certificate for el-for.it

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the el-for.it DV SSL/TLS Certificate

This certificate with serial number 05:ab:e0:62:a9:cd:f6:2d:68:e7:3a:77:16:35:94:f8:1f:cd for el-for.it was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for el-for.it provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:ab:e0:62:a9:cd:f6:2d:68:e7:3a:77:16:35:94:f8:1f:cd
Serial Number (int): 494047973762474852596020553512485696053197
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 67:55:e6:5d:51:f5:76:5e:86:c3:b0:e0:43:a2:a7:36:1c:a2:f9:e0
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 86:47:23:b5:0b:c2:ee:a0:51:6f:2c:b1:4e:b7:13:09:1e:1b:d4:d3
Fingerprint (SHA-256): df:2c:f6:01:cd:3b:77:e0:fa:80:5e:e0:fc:b2:af:67:4c:fc:36:0d:7d:76:ca:aa:72:ba:87:0a:2a:af:e7:e0

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/78.crl

Check the revocation status for certificate el-for.it
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for el-for.it

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for el-for.it in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgISBavgYqnN9i1o5zp3FjWU+B/NMA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTAwHhcNMjUwNjAzMTUxNzQxWhcNMjUwOTAxMTUxNzQwWjAUMRIwEAYDVQQD
EwllbC1mb3IuaXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB4a7S
wagkPnjWeWzyWCaYXxFGNEK2PmYaLn3GXMYUNBAC8xb5lb9DdW9rS/5GppwAr3bq
FakvRo/d3Eh7valEcKNdXJxbE1CB7d7Px1saVYNjbgsQVQ5y5AzZGeSIxEf/cRuI
dhMhj0h8avn6V8szS/mSYr6DYzHWlWAqs2zTksA/2P4BwB7mKEg3gVSmQSsC3tzO
LK8MadwnruhNYTeVBf/ONvFtAYbY/Y49yo0gDDR3+clEZg8GpWqQWlBnwkiCt9P7
gQHT3OdIKVlicbR0tfAJqZgpRQ3zuq+yvl3k5DtWC508gQcX9IEmlSkUW8qkRIyc
f5OLgFpt7ZKldWKXAgMBAAGjggImMIICIjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l
BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE
FGdV5l1R9XZehsOw4EOipzYcovngMB8GA1UdIwQYMBaAFLu8w0el5LypxsOkcgwQ
jaI14cjoMDMGCCsGAQUFBwEBBCcwJTAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5p
LmxlbmNyLm9yZy8wIQYDVR0RBBowGIILKi5lbC1mb3IuaXSCCWVsLWZvci5pdDAT
BgNVHSAEDDAKMAgGBmeBDAECATAuBgNVHR8EJzAlMCOgIaAfhh1odHRwOi8vcjEw
LmMubGVuY3Iub3JnLzc4LmNybDCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB1AO08
S9boBsKkogBX28sk4jgB31Ev7cSGxXAPIN23Pj/gAAABlzaUMooAAAQDAEYwRAIg
R4cIXz8h1WImEHj153p6a8mic9BCBTTIs+YejKUVmQECIFScDUaeTN37TTxj7Tra
bSNT+5UvZiDoEMU/pyiQCT89AHcAzPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5U
wP5MDbAAAAGXNpQ6awAABAMASDBGAiEAl1tYAzcEuI82IB4EJLAmG6J8iswdgI9n
NgmIjDXveaMCIQCCAQot75XzdBVIqmE42iHZuwxkVY2s+vdcMlTGEG/3uTANBgkq
hkiG9w0BAQsFAAOCAQEAuF829eQ1fT94boY4n2PXxbZwYt3SCbqjFDEFfVXKobzc
CImR2jznWuxhHU1/fmf3ZTBehwNaPdvYsZ2aWB0rkGHH/KtR669ilIVCpxvUzAoe
HEedA7uTqFLdbZF03DcJuj8f/lNNBfMF1fxaU1ABprnHetXFpGLsHjow7APA0TNI
hDYpgxSpT7HphRKl50IerZGHY0BjXonPniGVaFtDtis1b3SwD8RUqtG0buxrXve4
eu0qtc486YSk6+db3QefhHyZCAUfe0IW1OnG2XKzvPO3tlI3SSZV6KAAL2ulU33G
/T5GIc8YpSoWDqTwOGAkW9bG/jJIfw2+OjBczHr1Qw==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAweGu0sGoJD541nls8lgm
mF8RRjRCtj5mGi59xlzGFDQQAvMW+ZW/Q3Vva0v+RqacAK926hWpL0aP3dxIe72p
RHCjXVycWxNQge3ez8dbGlWDY24LEFUOcuQM2RnkiMRH/3EbiHYTIY9IfGr5+lfL
M0v5kmK+g2Mx1pVgKrNs05LAP9j+AcAe5ihIN4FUpkErAt7cziyvDGncJ67oTWE3
lQX/zjbxbQGG2P2OPcqNIAw0d/nJRGYPBqVqkFpQZ8JIgrfT+4EB09znSClZYnG0
dLXwCamYKUUN87qvsr5d5OQ7VgudPIEHF/SBJpUpFFvKpESMnH+Ti4Babe2SpXVi
lwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 494047973762474852596020553512485696053197
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-03 15:17:41 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-01 15:17:40 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'el-for.it'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24475281245885208930516540470326614921691321242293426944133377408632169397964740600247617336137088670186640782749995517135331044652972159221004990698094284787531517397585673842160441501020859940847817396400937095181346016437917232256320829005253266711764449216429350664331821614956109689143953864266429100835181703484725951463191989584312430059578799824734320280346562982216542804725285250179832760610554758795781608910026098091367447305621346801334990950578418549803264565985260413991361393429195908191877689702876846584437061804429246974639746692560165122090088427772128160185724677844096050392582269757935504941719
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6755e65d51f5765e86c3b0e043a2a7361ca2f9e0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.el-for.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'el-for.it'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/78.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007500ed3c4bd6e806c2a4a20057dbcb24e23801df512fedc486c5700f20ddb73e3fe0000001973694328a000004030046304402204787085f3f21d562261078f5e77a7a6bc9a273d0420534c8b3e61e8ca51599010220549c0d469e4cddfb4d3c63ed3ada6d2353fb952f6620e810c53fa72890093f3d007700ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db00000019736943a6b0000040300483046022100975b58033704b88f36201e0424b0261ba27c8acc1d808f673609888c35ef79a302210082010a2def95f3741548aa6138da21d9bb0c64558dacfaf75c3254c6106ff7b9
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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