pointersoft.it
Issued by R3
About this certificate
This digital certificate with serial number 03:2a:53:f3:44:2a:66:12:27:27:5e:fa:6c:07:2c:14:7a:34 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pointersoft.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:2a:53:f3:44:2a:66:12:27:27:5e:fa:6c:07:2c:14:7a:34Serial Number (int): 275740306240309952676375961936173164952116
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 61:25:97:6a:6b:d3:6b:d7:1d:e6:92:ab:20:e6:88:b5:c3:e1:da:f9
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 32:c5:b9:11:5e:c3:95:93:33:e9:49:d2:a5:9c:42:ee:b6:76:b7:dc
Fingerprint (sha256): 13:95:e3:4f:c5:cd:0e:d4:7b:f8:f0:68:31:c3:d9:2f:2a:f8:85:c7:f7:95:cd:2b:35:13:63:c3:4a:49:68:56
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate pointersoft.it
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pointersoft.it
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pointersoft.com
pointersoft.it
www.pointersoft.com
www.pointersoft.it
pointersoft.it
www.pointersoft.com
www.pointersoft.it
Other certificates including the domain name pointersoft.it
(limited to 100 certificates)
zzeta.pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
www.pointersoft.it
howto.pointersoft.it
pointersoft.it
www.pointersoft.it
www.pointersoft.it
pointersoft.it
zzeta.pointersoft.it
www.pointersoft.it
zzeta.pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
zzeta.pointersoft.it
pointersoft.it
www.pointersoft.it
zzeta.pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
www.pointersoft.it
howto.pointersoft.it
pointersoft.it
www.pointersoft.it
www.pointersoft.it
pointersoft.it
zzeta.pointersoft.it
www.pointersoft.it
zzeta.pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
zzeta.pointersoft.it
pointersoft.it
www.pointersoft.it
zzeta.pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
Certificate
The complete raw certificate details for pointersoft.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgISAypT80QqZhInJ176bAcsFHo0MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MDYwNjAxMTNaFw0yNDA4MDQwNjAxMTJaMBkxFzAVBgNVBAMT DnBvaW50ZXJzb2Z0Lml0MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEA y0gciuwiKz09gHDmLaFHZ43uHf4QI3mKUPP+MPUtEH4pe8TZqxFS9fv3eoojPRen WEb+4oz6uhAX9BtQDpyRT81pAAIVoSwQDJl4VrL0tQNuS3nBvWgFP/rpQ3gQdJFD IDExVoIVLsIdkS2lOVgLczMFnaYJW/Yk0emeh7PA1ZRQO9lNn4Kszsdpa8Cp6I88 msaLs49dbWqo3zAX0kxbKMkN2SU5BFKqmCZOA20nJ+6Be7hyUfJU+tl8+LkwCXI2 QWXVBV+WxV66Th3OEN1hR09EvLdwSPdvEHG9CkKHLQbRGtSrw2ZTBspk+lLFQ3AW YygWiiWdX4NP9E8pWiYmCuyJVvIreceG4Q7PNI/l+7HiInmU1Wkf7h12Vva8sR/i CvwqcWt2iOuv0nrVTcS4pbGbTb6G1uAb5/zE21KeYb6Ow4XODPWUXq0sRqBxX+Hd uWtvCis6wmPhHsPk/LvZKeNQaw7mAjPb34U441H530sy5UDPw9ZN0+1NRnTnGKeN AgMBAAGjggJJMIICRTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFGEll2pr02vXHeaS qyDmiLXD4dr5MB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsG AQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIG CCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMFMGA1UdEQRMMEqCD3Bv aW50ZXJzb2Z0LmNvbYIOcG9pbnRlcnNvZnQuaXSCE3d3dy5wb2ludGVyc29mdC5j b22CEnd3dy5wb2ludGVyc29mdC5pdDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMG CisGAQQB1nkCBAIEgfQEgfEA7wB2AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/ KIXs+GRuAAABj0y04KkAAAQDAEcwRQIgBQ5M5hEPNjvH+Rz4FqtV94JcyNP0uySk Tb60BqNT0BgCIQDPB2MtBo75PubSqD9gCqewbXSTQlgUkQOSztGZJxvfEgB1AO7N 0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABj0y04JsAAAQDAEYwRAIg WNXdyqCywLya4qIXe+voN1IAk35LcJ8gdbiIvVgShfACIFhlFV0BoyRdZJhVhxao Lffu0hWct4MCRqt6qHfiHQjKMA0GCSqGSIb3DQEBCwUAA4IBAQCfp8eGZIRlIVkG Uj5SGU1+paW5/fQ7XCl8cm5g8HK+dCWD9gGoojmTB5uejbc6zvBKd37+FOlwe5I7 3CfWg5UUX5/lQ1r2BKttLENOjl6oPWAdHg5IlTyjSu1FdHpLRl0C4ZhnJ+JEmK9E kruwkOnb2kqv0dMTvTMjh4VBvdtNXeO86HCbwIj5c8bxWH3oYCu81xw/gCuvkQYu bDVgfjv05mayEeXOUFao92xQZE9h71Bm/IW1VU3KhxOHOqspgZAjIn0e/9zjowDJ 1ns2MQPIh58N0UX0atYtw5ZUB8j/sWHwzIl5N/e9rwT43yNRNkOZivyC4s5HqOPa W7aduPKh -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAy0gciuwiKz09gHDmLaFH Z43uHf4QI3mKUPP+MPUtEH4pe8TZqxFS9fv3eoojPRenWEb+4oz6uhAX9BtQDpyR T81pAAIVoSwQDJl4VrL0tQNuS3nBvWgFP/rpQ3gQdJFDIDExVoIVLsIdkS2lOVgL czMFnaYJW/Yk0emeh7PA1ZRQO9lNn4Kszsdpa8Cp6I88msaLs49dbWqo3zAX0kxb KMkN2SU5BFKqmCZOA20nJ+6Be7hyUfJU+tl8+LkwCXI2QWXVBV+WxV66Th3OEN1h R09EvLdwSPdvEHG9CkKHLQbRGtSrw2ZTBspk+lLFQ3AWYygWiiWdX4NP9E8pWiYm CuyJVvIreceG4Q7PNI/l+7HiInmU1Wkf7h12Vva8sR/iCvwqcWt2iOuv0nrVTcS4 pbGbTb6G1uAb5/zE21KeYb6Ow4XODPWUXq0sRqBxX+HduWtvCis6wmPhHsPk/LvZ KeNQaw7mAjPb34U441H530sy5UDPw9ZN0+1NRnTnGKeNAgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 275740306240309952676375961936173164952116 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-06 06:01:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-04 06:01:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pointersoft.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 4613228511655254763548830622200090158107524415805287516365802087573838657046850577004028087721259551724499519171741772461773754325700360222176451655504616099264865939246963065642414058919201660770180257285066788302287837692672350358654588958457930616918061449942745573350067663015694628622111411738381912321124893117261083236528682449885428850734957310689053213903910546437206476087986855613106864529687564435501957391812510448729085244286157303277731500538376012563160149755972931365882001573663912724657344995998584472475324138459089882031699794962011068488515171056146075856443202783463497459723082443657925548060247267475698423867276758331492670261694280349533672989265701977264648169264326235877791374213263400670641774916007407165188584344522059279773229967949534732663893528486298829421874885512995311548076364309608486262411398606402847833244411603536834252462299585023090820124208571750674789851413419642405086865293 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6125976a6bd36bd71de692ab20e688b5c3e1daf9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (76 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pointersoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pointersoft.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pointersoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pointersoft.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f4cb4e0a900000403004730450220050e4ce6110f363bc7f91cf816ab55f7825cc8d3f4bb24a44dbeb406a353d018022100cf07632d068ef93ee6d2a83f600aa7b06d7493425814910392ced199271bdf12007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018f4cb4e09b0000040300463044022058d5ddcaa0b2c0bc9ae2a2177bebe8375200937e4b709f2075b888bd581285f002205865155d01a3245d6498558716a82df7eed2159cb7830246ab7aa877e21d08ca . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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