thevisualagency.it

Issued by R3

About this certificate

This digital certificate with serial number 03:b1:4a:3f:81:1d:da:fe:21:59:16:44:46:2e:04:4f:ff:47 was issued on by Let's Encrypt.

With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=thevisualagency.it

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:b1:4a:3f:81:1d:da:fe:21:59:16:44:46:2e:04:4f:ff:47
Serial Number (int): 321665529345473249982384327628740161961799
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 9f:91:68:7b:61:19:21:57:7d:6d:18:bf:5f:73:ff:3b:7a:c7:8a:3f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): a8:d8:15:10:ed:c9:c7:03:7c:58:87:05:80:4e:59:bd:21:09:5a:16
Fingerprint (sha256): 09:4b:8b:21:c1:a4:60:96:d9:db:4e:37:4b:b2:af:32:e6:55:67:a8:ab:7a:c2:0b:ff:26:fc:7a:b5:b8:28:18

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate thevisualagency.it

4

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for thevisualagency.it

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

thevisualagency.com
thevisualagency.it
www.thevisualagency.com
www.thevisualagency.it

Other certificates including the domain name thevisualagency.it

(limited to 100 certificates)
thevisualagency.it
www.thevisualagency.com
www.thevisualagency.it

Certificate

The complete raw certificate details for thevisualagency.it in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1QRn9g2R7HMusmvZ1rBv
g95hEKZ4hiUVyvyGIvJSFoyYvBC1BB+sqblNJ/iDUAC0tRquTnttSfEyGUmYKrUI
NJWSxGCiaivusjucJb/TikTg2gUwJz66mTKeipp7DXADjecgaVNTkiw/douaDsuR
JGZqVfAnNnL7idTKo5uHmIFM2eUT7s0ULnAPw5t9AdUFIJd1Mvr9EhcTvdOeAK6l
iStqmOlaETn2SGPZMj0zm6vH69tGn5RHFx8wV5KVkT00OwcXontepCq1DALKAdx7
9TiNUT8WVWOeCSBWAGxoOVdDisP6AbFDly35dmuTI6KqWBLio5mL0bKCRHofrIvL
HwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 321665529345473249982384327628740161961799
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-24 01:31:49 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-23 01:31:48 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thevisualagency.it'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26890931685781916601221453284209246825412254265556621325886316990666653340897558696405938578794456056122853290032407402299387684842007356370474554085401032272384853366422629025026985173102495097947860662583045798960919051024110126275823407213461397577253301446529351109845813827157653729335220187270090626156913686434545419357977708567640973613496795586683881279053295558474942292075763702268697205206129389055918601606140428736368225305561403700568096976595895068811650337587198819665425906817140357379396136438808075256090401942143347553780864767800560741047880036987205664210159420437570316893285507410039940041503
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							9f91687b611921577d6d18bf5f73ff3b7ac78a3f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thevisualagency.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thevisualagency.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thevisualagency.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thevisualagency.it'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d394f383200000403004730450220599a32a504a7db7026157fa2dba723455b6b15c34b22a14f58f543c003ac2d59022100ddfa0dba80b44c876f32e2e884159ba4663bf2045cfa0ee889f42daf75c06e3c00770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018d394f384d0000040300483046022100d3cdec52428bd257cc176b374a3149a99eed18b9fc5bc9aa4f51c0f7edbaed2e0221009003ded8daf3863a8edf6706adb28ccf89a3154155e610ca41f7be2a4f1b6f9b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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