*.pixito.cz

Issued by Actalis Domain Validation Server CA G3

About this certificate

This digital certificate with serial number 05:d4:bf:21:8a:7b:06:17:aa:cd:18:32:bd:ce:8c:db was issued on by Actalis S.p.A..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=*.pixito.cz

Actalis S.p.A.

Organization: Actalis S.p.A.
State / Province: Bergamo
Locality: Ponte San Pietro
Country: IT

This certificate will expire on

Certificate Details

Serial Number (hex): 05:d4:bf:21:8a:7b:06:17:aa:cd:18:32:bd:ce:8c:db
Serial Number (int): 7750783510555281263481364783727283419
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 06:dd:1f:4f:5a:d9:de:4d:81:d6:ce:ed:e9:06:8e:32:59:37:1a:2d
AuthorityKeyId: 42:83:6d:80:7c:09:84:67:fd:80:57:ab:f1:26:f5:77:c8:22:82:71

Fingerprint (sha1): b3:22:13:24:7e:98:d2:4d:5e:e5:bd:4f:2d:8f:a0:13:0f:f6:c7:65
Fingerprint (sha256): 31:6f:b2:62:bd:f8:32:7a:57:20:0c:42:42:34:c8:e1:27:51:c0:66:60:f1:2e:6f:f6:1c:9f:d9:54:e8:66:18

Issuing Certificate URL: http://cacert.actalis.it/certs/actalis-autdvg3

Revocation information

OCSP Server: http://ocsp06.actalis.it/VA/AUTHDV-G3
CRL Distribution Point: http://crl06.actalis.it/Repository/AUTHDV-G3/getLastCRL

Check the revocation status for certificate *.pixito.cz

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.pixito.cz

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Client Authentication
Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

pixito.cz
*.pixito.cz

Other certificates including the domain name pixito.cz

(limited to 100 certificates)
link.thecup.kr
www.galerie.pixito.cz
www.pixito.cz
pixito.cz
www.bus.transvision.nl
www.pixito.cz
www.galerie.pixito.cz
app.pixito.cz
pixito.cz
pixito.cz
www.pixito.cz
*.pixito.cz
*.pixito.cz
*.pixito.cz
app.pixito.cz
www.galerie.pixito.cz
www.galerie.pixito.cz
www.pixito.cz
www.galerie.pixito.cz
www.pixito.cz
pixito.cz
www.pixito.cz
www.pixito.cz
pixito.cz
www.galerie.pixito.cz
pixito.cz
pixito.cz
pixito.cz
api.pixito.cz
www.pixito.cz
*.pixito.cz
pixito.cz
pixito.cz
pixito.cz
pixito.cz
www.pixito.cz
api.pixito.cz
www.pixito.cz
www.galerie.pixito.cz
api.pixito.cz
www.bus.transvision.nl
www.pixito.cz
event.pixito.cz
www.pixito.cz
pixito.cz
app.pixito.cz
*.pixito.cz
www.galerie.pixito.cz
www.pixito.cz
links.mesmenus.app
pixito.cz
www.pixito.cz
pixito.cz
www.galerie.pixito.cz
www.galerie.pixito.cz
pixito.cz
www.pixito.cz
www.pixito.cz
www.pixito.cz
www.pixito.cz
www.pixito.cz
pixito.cz
pixito.cz
www.pixito.cz
pixito.cz
pixito.cz

Certificate

The complete raw certificate details for *.pixito.cz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxblJtA3wD0hqmyjeGd78
riikTNnXFVj21T+UGEJM2Q1eC4PDXUZN80j9fz1hAslgR340uo4fFBFB4KEnpWPo
keX2XULZE/zCsvfs0OH7OegrnjzW8s6cRWTIZUvGBpZEeXErZr7eA2/8VIrjrGEO
bJmnJofZzRoeR3eRVR8EbL4o9gwVT+sqQKkxsqz/nqG3ozKX5QOUjcIJ8EIH2slH
u3t+FJqsX/4BkVDBdbW7qrNJIxLlCT8VShQ+qJoUaouNy+LyXeySE72YUWGx8pJY
j7+U5Ja7KkTU2It3ioSonT3PJEWsH7iuBiUlcHz/Sww6tmK0bL8SbceMDu7z0TzA
FQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 7750783510555281263481364783727283419
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bergamo'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Ponte San Pietro'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis S.p.A.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis Domain Validation Server CA G3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-16 14:16:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-06 11:24:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.pixito.cz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24960314948974112371615768285394204714790451210293504184421900613753360986273243425954149640712191244039108318324739618793650778110773400874083194039219230544889603535127966041390148900843846960523556630037739500829579997901135868786005379664271989263359108423107936332913563587246475364382599763295921232056952424582099044873948576379328486265170117686313961553631784105046059233848283662596790635469043757437304561941067069074238557304058126466377876421204737149479586962139962586508087778918561275365073570386315814614220065163344444745765536252075788754214550888885551212368450981475269759514440882772890324090901
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 42836d807c098467fd8057abf126f577c8228271
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacert.actalis.it/certs/actalis-autdvg3'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp06.actalis.it/VA/AUTHDV-G3'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pixito.cz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pixito.cz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.159.1.23.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.actalis.it/area-download'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl06.actalis.it/Repository/AUTHDV-G3/getLastCRL'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							06dd1f4f5ad9de4d81d6ceede9068e3259371a2d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							016800750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018b38e1246100000403004630440220746b306408d760d2387c857be53c71595f265282dab090c830216a4c9a43a93202206782923f06880d3f7cb746e1c6c3194139d70e1e0a1fe84d9533ab0b18ac945c00770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b38e124090000040300483046022100f8cef8a58396701961fa19302f487dab4ebcb57ee5966e52492ea7a93033ec78022100f0cc309c903b6fe830c727f5c1baeeedf1158338c0a09ecfb6a86d3f40ceb906007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018b38e124380000040300473045022014dcc37ec647f24323682a8396d6f7ca81c112f43e8f7b4c82f1d084134a5d2b02210098a8e0c3d9425d7629fe64c2811c3c6a98aa16c5e942eee47143885ebf939b3d
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		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