www.procura.bologna.it
Issued by R3
About this certificate
This digital certificate with serial number 03:ff:e7:0e:e3:18:1f:c2:85:d0:3f:2c:d8:a8:e1:55:48:ae was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.procura.bologna.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:ff:e7:0e:e3:18:1f:c2:85:d0:3f:2c:d8:a8:e1:55:48:aeSerial Number (int): 348415990325320668305361016774571318397102
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 9f:19:b5:12:d3:ef:0f:93:ff:83:fd:0c:27:4d:6b:9d:f2:3e:67:8c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): fe:7b:12:c7:b5:50:93:10:23:16:49:26:ce:6f:05:53:ea:89:83:69
Fingerprint (sha256): 1a:3d:f3:51:91:a8:2f:c8:87:7e:36:50:96:05:2e:ab:64:37:47:5d:5e:a5:a3:7c:12:a9:49:25:48:23:5c:7d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.procura.bologna.it
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.procura.bologna.it
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
procura.bologna.it
www.procura.bologna.giustizia.it
www.procura.bologna.it
www.procura.bologna.giustizia.it
www.procura.bologna.it
Other certificates including the domain name procura.bologna.it
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.procura.bologna.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgISA//nDuMYH8KF0D8s2KjhVUiuMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MTcxNjM0MDVaFw0yNDA4MTUxNjM0MDRaMCExHzAdBgNVBAMT Fnd3dy5wcm9jdXJhLmJvbG9nbmEuaXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCEZENcCkz73EqnUvNutGLJO0GlQcmi0VNfZGGvRpe5ghnS8Itjdmau S1iD1umCbKx26/RKSpeLGJw5EE4irvr5BEnEyHKGRd1RCeKXhmTesczN6IaRoMNg DS/NKkhPQsrTOyykpCkCKist+n8/5EU8T50haOIUQa2AgbDK4ArRvwMQmGou/QOB Q+S1W3Yr22SPrnzL0PkM/eF3KGjx8mrcPhWAIsHeI1rrNI31lfL1FX41HU2ZC9Lq nNw4Y2pyjttHgb3Dlu8OEzEBuKmm4WOsXb/UwZ5zAIO+xXjDiLkjuYIiiP84ibI6 2EykxNiVTdkWHJV4PRROgeFPnURJ+8HBAgMBAAGjggJNMIICSTAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQC MAAwHQYDVR0OBBYEFJ8ZtRLT7w+T/4P9DCdNa53yPmeMMB8GA1UdIwQYMBaAFBQu sxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYV aHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5s ZW5jci5vcmcvMFcGA1UdEQRQME6CEnByb2N1cmEuYm9sb2duYS5pdIIgd3d3LnBy b2N1cmEuYm9sb2duYS5naXVzdGl6aWEuaXSCFnd3dy5wcm9jdXJhLmJvbG9nbmEu aXQwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8A dQBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY+HnjxKAAAEAwBG MEQCIBRAoK3nOvUch07z60X+stVvAsevbvKYu1PYmDEWI3cDAiBBX204rt29ODg1 VSQaw0T52z1xOsHmNLGfwo3mj4kAxQB2AHb/iD8KtvuVUcJhzPWHujS0pM27Kdxo Qgqf5mdMWjp0AAABj4eePKIAAAQDAEcwRQIgPLl2bcL5oOAsrYvGpZi541/HWuV3 Kopaae7S7yCpy8gCIQCkgdDSNZiBAuR+Z7dDIsI0uviD7cMv5zDdTSUSC0vRHjAN BgkqhkiG9w0BAQsFAAOCAQEAmjwNBJOU0dBTHg7ZWwgS+UvyX8jA87m4K25eF8Uf 2Q92tZV75LU9J28qphlL0qu6laxOoGG2ZvhA0ZHQFYAtd+cQnT+OsDn0TmpAvFSa CkwycufNny5GdxTyu8ARlmX4dXAz7Y38h38Y3HA7RqAJfRn9NkGXYgHCaRzHJd8Z LiG90bPdCBJM//rYC+HBGJ5nDnNgwTKQQKEpnL0WNxC7To4PWcqHFb2pJt3vg6Fp py9XNxHQPGI2MPQAU1sCQ2q2XLUoJIDiYTxORGhoBy7rhElwRUpGfcRYRnAbWKx7 oVdQtpOvnVRlFmY3F26bv/T8mMWFZrO9CcgJnELq7jwBAg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhGRDXApM+9xKp1LzbrRi yTtBpUHJotFTX2Rhr0aXuYIZ0vCLY3ZmrktYg9bpgmysduv0SkqXixicORBOIq76 +QRJxMhyhkXdUQnil4Zk3rHMzeiGkaDDYA0vzSpIT0LK0zsspKQpAiorLfp/P+RF PE+dIWjiFEGtgIGwyuAK0b8DEJhqLv0DgUPktVt2K9tkj658y9D5DP3hdyho8fJq 3D4VgCLB3iNa6zSN9ZXy9RV+NR1NmQvS6pzcOGNqco7bR4G9w5bvDhMxAbippuFj rF2/1MGecwCDvsV4w4i5I7mCIoj/OImyOthMpMTYlU3ZFhyVeD0UToHhT51ESfvB wQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 348415990325320668305361016774571318397102 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-17 16:34:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-15 16:34:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.procura.bologna.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16712897844269377525654635624855581563961328878137044021247485028779620193638205184376537939423207694233458298268677818492054366179013514732705479759229304467626317473189971562160766092849874964389334742501615579019996698647390428544009496440033203147593890020838212162619493837273838451747654626487071910878176402340412411665393661927919344497341544644806944379753432564251943081898323203764961509886212033461911562091065267532694323987839277211961221930944773736719713369257011309595159349883399822302448686136034984661020744361216102773938496175374112205440140556508372998441871542871579378232873622259330807742913 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9f19b512d3ef0f93ff83fd0c274d6b9df23e678c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'procura.bologna.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.procura.bologna.giustizia.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.procura.bologna.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f879e3c4a000004030046304402201440a0ade73af51c874ef3eb45feb2d56f02c7af6ef298bb53d89831162377030220415f6d38aeddbd38383555241ac344f9db3d713ac1e634b19fc28de68f8900c500760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f879e3ca2000004030047304502203cb9766dc2f9a0e02cad8bc6a598b9e35fc75ae5772a8a5a69eed2ef20a9cbc8022100a481d0d235988102e47e67b74322c234baf883edc32fe730dd4d25120b4bd11e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 009a3c0d049394d1d0531e0ed95b0812f94bf25fc8c0f3b9b82b6e5e17c51fd90f76b5957be4b53d276f2aa6194bd2abba95ac4ea061b666f840d191d015802d77e7109d3f8eb039f44e6a40bc549a0a4c3272e7cd9f2e467714f2bbc0119665f8757033ed8dfc877f18dc703b46a0097d19fd3641976201c2691cc725df192e21bdd1b3dd08124cfffad80be1c1189e670e7360c1329040a1299cbd163710bb4e8e0f59ca8715bda926ddef83a169a72f573711d03c623630f400535b02436ab65cb5282480e2613c4e446868072eeb844970454a467dc45846701b58ac7ba15750b693af9d5465166637176e9bbff4fc98c58566b3bd09c8099c42eaee3c0102