thevisualagency.it
Issued by R3
About this certificate
This digital certificate with serial number 03:b1:4a:3f:81:1d:da:fe:21:59:16:44:46:2e:04:4f:ff:47 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=thevisualagency.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:b1:4a:3f:81:1d:da:fe:21:59:16:44:46:2e:04:4f:ff:47Serial Number (int): 321665529345473249982384327628740161961799
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 9f:91:68:7b:61:19:21:57:7d:6d:18:bf:5f:73:ff:3b:7a:c7:8a:3f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): a8:d8:15:10:ed:c9:c7:03:7c:58:87:05:80:4e:59:bd:21:09:5a:16
Fingerprint (sha256): 09:4b:8b:21:c1:a4:60:96:d9:db:4e:37:4b:b2:af:32:e6:55:67:a8:ab:7a:c2:0b:ff:26:fc:7a:b5:b8:28:18
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate thevisualagency.it
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for thevisualagency.it
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
thevisualagency.com
thevisualagency.it
www.thevisualagency.com
www.thevisualagency.it
thevisualagency.it
www.thevisualagency.com
www.thevisualagency.it
Other certificates including the domain name thevisualagency.it
(limited to 100 certificates)
Certificate
The complete raw certificate details for thevisualagency.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgISA7FKP4Ed2v4hWRZERi4ET/9HMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMjQwMTMxNDlaFw0yNDA0MjMwMTMxNDhaMB0xGzAZBgNVBAMT EnRoZXZpc3VhbGFnZW5jeS5pdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANUEZ/YNkexzLrJr2dawb4PeYRCmeIYlFcr8hiLyUhaMmLwQtQQfrKm5TSf4 g1AAtLUark57bUnxMhlJmCq1CDSVksRgomor7rI7nCW/04pE4NoFMCc+upkynoqa ew1wA43nIGlTU5IsP3aLmg7LkSRmalXwJzZy+4nUyqObh5iBTNnlE+7NFC5wD8Ob fQHVBSCXdTL6/RIXE73TngCupYkrapjpWhE59khj2TI9M5urx+vbRp+URxcfMFeS lZE9NDsHF6J7XqQqtQwCygHce/U4jVE/FlVjngkgVgBsaDlXQ4rD+gGxQ5ct+XZr kyOiqlgS4qOZi9GygkR6H6yLyx8CAwEAAaOCAlswggJXMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUn5Foe2EZIVd9bRi/X3P/O3rHij8wHwYDVR0jBBgwFoAUFC6zF7dY VsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRw Oi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNy Lm9yZy8wYwYDVR0RBFwwWoITdGhldmlzdWFsYWdlbmN5LmNvbYISdGhldmlzdWFs YWdlbmN5Lml0ghd3d3cudGhldmlzdWFsYWdlbmN5LmNvbYIWd3d3LnRoZXZpc3Vh bGFnZW5jeS5pdDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIE gfYEgfMA8QB2AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAABjTlP ODIAAAQDAEcwRQIgWZoypQSn23AmFX+i26cjRVtrFcNLIqFPWPVDwAOsLVkCIQDd +g26gLRMh28y4uiEFZukZjvyBFz6DuiJ9C2vdcBuPAB3AHb/iD8KtvuVUcJhzPWH ujS0pM27KdxoQgqf5mdMWjp0AAABjTlPOE0AAAQDAEgwRgIhANPN7FJCi9JXzBdr N0oxSame7Ri5/FvJqk9RwPftuu0uAiEAkAPe2NrzhjqO32cGrbKMz4mjFUFV5hDK Qfe+Kk8bb5swDQYJKoZIhvcNAQELBQADggEBACaDlwJAKcbVJ3M0z2K9Nt7XOWCc 4cb4EoUL5qurfA0hy7rL4Xm32t2siRNA/biED0w+QBd+0MTBZPpAHrrGDe+srMfj syFoFWwXUBRSbdEUY4KxvYbgBYl4OTZ/H3/sxm9Dq2bdFfeqOJZKwc1fuP06FksO 6G5zH+k9me6dxWghrTFcpJqXc4coHgVT5oMGw84z/7BPsaDZBMD9gI0J07OXP35z dKQoSAElbv/T4eONG5cZ/PH7oHM2dHED2XWitiyeDt3g6k2qcWdK2a3v7Lm4Bz7M IxLdyMiKlQl35PKXW+dqCWeEkr14dj9JqYwCKcL7UA6bG94T48Q1Q7CXpg0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1QRn9g2R7HMusmvZ1rBv g95hEKZ4hiUVyvyGIvJSFoyYvBC1BB+sqblNJ/iDUAC0tRquTnttSfEyGUmYKrUI NJWSxGCiaivusjucJb/TikTg2gUwJz66mTKeipp7DXADjecgaVNTkiw/douaDsuR JGZqVfAnNnL7idTKo5uHmIFM2eUT7s0ULnAPw5t9AdUFIJd1Mvr9EhcTvdOeAK6l iStqmOlaETn2SGPZMj0zm6vH69tGn5RHFx8wV5KVkT00OwcXontepCq1DALKAdx7 9TiNUT8WVWOeCSBWAGxoOVdDisP6AbFDly35dmuTI6KqWBLio5mL0bKCRHofrIvL HwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 321665529345473249982384327628740161961799 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-24 01:31:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-23 01:31:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thevisualagency.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26890931685781916601221453284209246825412254265556621325886316990666653340897558696405938578794456056122853290032407402299387684842007356370474554085401032272384853366422629025026985173102495097947860662583045798960919051024110126275823407213461397577253301446529351109845813827157653729335220187270090626156913686434545419357977708567640973613496795586683881279053295558474942292075763702268697205206129389055918601606140428736368225305561403700568096976595895068811650337587198819665425906817140357379396136438808075256090401942143347553780864767800560741047880036987205664210159420437570316893285507410039940041503 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9f91687b611921577d6d18bf5f73ff3b7ac78a3f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thevisualagency.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thevisualagency.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thevisualagency.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thevisualagency.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d394f383200000403004730450220599a32a504a7db7026157fa2dba723455b6b15c34b22a14f58f543c003ac2d59022100ddfa0dba80b44c876f32e2e884159ba4663bf2045cfa0ee889f42daf75c06e3c00770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018d394f384d0000040300483046022100d3cdec52428bd257cc176b374a3149a99eed18b9fc5bc9aa4f51c0f7edbaed2e0221009003ded8daf3863a8edf6706adb28ccf89a3154155e610ca41f7be2a4f1b6f9b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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