*.dith.it

Issued by Actalis Domain Validation Server CA G3

About this certificate

This digital certificate with serial number 51:e1:7d:3d:7d:c7:71:c2:10:3d:76:5d:37:0e:bd:16 was issued on by Actalis S.p.A..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=*.dith.it

Actalis S.p.A.

Organization: Actalis S.p.A.
State / Province: Bergamo
Locality: Ponte San Pietro
Country: IT

This certificate will expire on

Certificate Details

Serial Number (hex): 51:e1:7d:3d:7d:c7:71:c2:10:3d:76:5d:37:0e:bd:16
Serial Number (int): 108838274624793631423577901156214422806
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: c9:98:d9:58:b1:7e:15:65:c0:ef:86:f8:e5:ee:51:e6:71:07:8f:cf
AuthorityKeyId: 42:83:6d:80:7c:09:84:67:fd:80:57:ab:f1:26:f5:77:c8:22:82:71

Fingerprint (sha1): ba:82:8b:66:8c:b4:f6:e0:41:fd:a5:db:93:3d:81:2d:70:2d:c2:47
Fingerprint (sha256): 31:56:98:0c:30:9e:5c:81:69:56:3d:13:6a:fe:58:d6:5f:99:5f:7e:24:a9:26:4d:54:52:e0:54:3b:e4:c3:5c

Issuing Certificate URL: http://cacert.actalis.it/certs/actalis-autdvg3

Revocation information

OCSP Server: http://ocsp06.actalis.it/VA/AUTHDV-G3
CRL Distribution Point: http://crl06.actalis.it/Repository/AUTHDV-G3/getLastCRL

Check the revocation status for certificate *.dith.it

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.dith.it

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Client Authentication
Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

dith.it
*.dith.it

Other certificates including the domain name dith.it

(limited to 100 certificates)

Certificate

The complete raw certificate details for *.dith.it in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIF9jCCA96gAwIBAgIQUeF9PX3HccIQPXZdNw69FjANBgkqhkiG9w0BAQsFADCB
hDELMAkGA1UEBhMCSVQxEDAOBgNVBAgMB0JlcmdhbW8xGTAXBgNVBAcMEFBvbnRl
IFNhbiBQaWV0cm8xFzAVBgNVBAoMDkFjdGFsaXMgUy5wLkEuMS8wLQYDVQQDDCZB
Y3RhbGlzIERvbWFpbiBWYWxpZGF0aW9uIFNlcnZlciBDQSBHMzAeFw0yNDA1MTQx
NDU5NTZaFw0yNTA1MTQxNDU5NTZaMBQxEjAQBgNVBAMMCSouZGl0aC5pdDCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOkLiXEfhGFk789oH4CEBDSUUTls
Ih7H9IPG4x6BVYUB3oAGo0U7U7yjWVcMbNNDWP/R7gzplc5IDhoK8o9vt0EmHUcz
k5ln3gv5KrHiiFRpVtpS7BIVSdP9OE5vDbXXAz62Yecg51W0diiCW8GD+PD+Fcea
Ykk4G6NqN+44xtBXg1VpamlctwbUCoZIDPwrYnGk5nfypndxX4x7aIcjWsSIvGBy
qHV9c9XHlRCfCIZ0tYNOiqQQNyJJKrcxIX+vHD2xeGZRuzMO7mXyEFbE5C4Np3Ir
CI7zzXGmTfaduprT0K7Bj+6YKKvYcq2NeGY+3pSH9/lXL2MVRYYCF+Z46QUCAwEA
AaOCAdEwggHNMAwGA1UdEwEB/wQCMAAwHwYDVR0jBBgwFoAUQoNtgHwJhGf9gFer
8Sb1d8gignEwfQYIKwYBBQUHAQEEcTBvMDoGCCsGAQUFBzAChi5odHRwOi8vY2Fj
ZXJ0LmFjdGFsaXMuaXQvY2VydHMvYWN0YWxpcy1hdXRkdmczMDEGCCsGAQUFBzAB
hiVodHRwOi8vb2NzcDA2LmFjdGFsaXMuaXQvVkEvQVVUSERWLUczMB0GA1UdEQQW
MBSCB2RpdGguaXSCCSouZGl0aC5pdDBRBgNVHSAESjBIMDwGBiuBHwEXATAyMDAG
CCsGAQUFBwIBFiRodHRwczovL3d3dy5hY3RhbGlzLml0L2FyZWEtZG93bmxvYWQw
CAYGZ4EMAQIBMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATBIBgNVHR8E
QTA/MD2gO6A5hjdodHRwOi8vY3JsMDYuYWN0YWxpcy5pdC9SZXBvc2l0b3J5L0FV
VEhEVi1HMy9nZXRMYXN0Q1JMMB0GA1UdDgQWBBTJmNlYsX4VZcDvhvjl7lHmcQeP
zzAOBgNVHQ8BAf8EBAMCBaAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcN
AQELBQADggIBAD7MzAAPvEivGZ6NX8eY7qKWrsSk4f4qdb818NmBSZo6zJlzXE8B
BcmLTYlGggNcQul9rCm9A8o9lz0EFbgaiwPqb4eRTnDOJLOMmSob8IUvd3VcXIDV
k5Z5REMPjJhJsnY84ylCSAP/o6mi76vB/3e3BungtYItMBEhoX9fPkwHRM72Y9zL
EhC5A/3Of7BkpVTtg68OpZ6POhMbYLpnqQbUrcjhvtms3wHnEl4K0u76CItc1A2J
AUHxoVzWzCxBFQZFx3PQ+95mI1kYqXTDGbAaGKyKK9yO+Wel50axx6jBjazC5U+a
hvUl0mMYDB4gZFvF3NtoJ8CaxEeD8+rQZAyyumF+a6ph82+ggHV7yLRqiv7wHH8s
QPwNz1lOFxCAfptcPzmeqv4yuy1pF+jBC8blV/lqKRlt021hC/7VgpSyya/9Z1mY
y/mqBXtW5qDSD5I16rxgakrmkehiAD/JpNIldoKZH+XCKi54VdcNvwwd3iRG2O4B
yDUL12fcRTiCIVjTK6h+/0DVPx3jWIBgzKZcTGKyRAcpnFaw7tWw1U85o3ZQE7uH
r6fIEgoMO3DOW7rdall0UynKRzhmHQMUoW7fmDh8vlhwaIONuktS2kSg+8ZkONvn
UhB3yt6ivpog1TJ6c7gE6u3PXN+3xBqcMVZGL4Fo8nY85SAbzXTNPfp7
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6QuJcR+EYWTvz2gfgIQE
NJRROWwiHsf0g8bjHoFVhQHegAajRTtTvKNZVwxs00NY/9HuDOmVzkgOGgryj2+3
QSYdRzOTmWfeC/kqseKIVGlW2lLsEhVJ0/04Tm8NtdcDPrZh5yDnVbR2KIJbwYP4
8P4Vx5piSTgbo2o37jjG0FeDVWlqaVy3BtQKhkgM/CticaTmd/Kmd3FfjHtohyNa
xIi8YHKodX1z1ceVEJ8IhnS1g06KpBA3IkkqtzEhf68cPbF4ZlG7Mw7uZfIQVsTk
Lg2ncisIjvPNcaZN9p26mtPQrsGP7pgoq9hyrY14Zj7elIf3+VcvYxVFhgIX5njp
BQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 108838274624793631423577901156214422806
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bergamo'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Ponte San Pietro'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis S.p.A.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis Domain Validation Server CA G3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-14 14:59:56 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-14 14:59:56 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.dith.it'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29419214105822909114172044501230183367388531065190700826825128237277888678925627760608587649369387299060533396378938515115351228677342334837751627997277812847411755968766263769102564166353323970823691297273525453368669507976434664754134781223456644690290303957012646749315576159675726044420141954213462194100436203168711814811026645041474993950287724345943294102149293312399309838263029724847370222671228795649012655706082045558007817851130388247717041712061662237299837587672234805575953279696964015358420007920170154781634871309218606083765274690905073998063920565349774373012856957200403829615190270605343319451909
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 42836d807c098467fd8057abf126f577c8228271
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacert.actalis.it/certs/actalis-autdvg3'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp06.actalis.it/VA/AUTHDV-G3'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dith.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dith.it'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.159.1.23.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.actalis.it/area-download'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl06.actalis.it/Repository/AUTHDV-G3/getLastCRL'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c998d958b17e1565c0ef86f8e5ee51e671078fcf
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		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