*.march21.it
Issued by Actalis Domain Validation Server CA G3
About this certificate
This digital certificate with serial number 4d:df:ef:33:42:1a:30:dd:32:3f:75:e3:a7:da:ee:af was issued on by Actalis S.p.A..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.march21.it
Actalis S.p.A.
Organization:
Actalis S.p.A.
State / Province:
Bergamo
Locality: Ponte San Pietro
Country: IT
Locality: Ponte San Pietro
Country: IT
This certificate has expire since
Certificate Details
Serial Number (hex): 4d:df:ef:33:42:1a:30:dd:32:3f:75:e3:a7:da:ee:afSerial Number (int): 103513289431881023224929100160023850671
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: ba:35:69:39:66:bb:54:f3:1d:25:30:a0:f1:7a:90:3a:39:8f:dc:3d
AuthorityKeyId: 42:83:6d:80:7c:09:84:67:fd:80:57:ab:f1:26:f5:77:c8:22:82:71
Fingerprint (sha1): c5:87:cf:2e:76:5c:3b:18:52:2d:b4:aa:9e:a7:ae:12:49:5c:27:53
Fingerprint (sha256): 3c:6b:09:f2:02:55:9c:83:8c:56:4a:9e:17:d2:1f:59:e8:f2:41:eb:19:18:80:68:b7:4d:eb:77:9e:38:c7:fa
Issuing Certificate URL: http://cacert.actalis.it/certs/actalis-autdvg3
Revocation information
OCSP Server: http://ocsp06.actalis.it/VA/AUTHDV-G3CRL Distribution Point: http://crl06.actalis.it/Repository/AUTHDV-G3/getLastCRL
Check the revocation status for certificate *.march21.it
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.march21.it
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.march21.it
march21.it
march21.it
Other certificates including the domain name march21.it
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.march21.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/zCCA+egAwIBAgIQTd/vM0IaMN0yP3Xjp9rurzANBgkqhkiG9w0BAQsFADCB hDELMAkGA1UEBhMCSVQxEDAOBgNVBAgMB0JlcmdhbW8xGTAXBgNVBAcMEFBvbnRl IFNhbiBQaWV0cm8xFzAVBgNVBAoMDkFjdGFsaXMgUy5wLkEuMS8wLQYDVQQDDCZB Y3RhbGlzIERvbWFpbiBWYWxpZGF0aW9uIFNlcnZlciBDQSBHMzAeFw0yMTEyMDUw OTE0MjNaFw0yMzAxMDUwOTE0MjNaMBcxFTATBgNVBAMMDCoubWFyY2gyMS5pdDCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKuAfSCCELtmv9UNu536gp71 +ftn/nahPxpFjzFg20eGNEdNgM2JJFMyqIQWcw10vIyCrTc3UJgxB1qCZLMJeuvS aXsxwseweNFEiUsH7mylQfOBCyoRsb6RCfDaD8tNqeNjsD50zD+r0GSKIEq4en2r obt8+uJVCAYmWOkDgQUJv90Fcz5IIkiVxaZjiizL0NBHV4MO8d8+Ez94Bss5e86G QNDCcWNFk4OCnsAICNmp1so6miGWhO/7F4SRx8ei7hgkLrsPW0cl6unaXF7Ta+Yy TeI1XzzwKVFi99UwBVJPIP+aOJhSLJErBzLOL4eJ9+D21qCpIQ4BV9f0tpJofR8C AwEAAaOCAdcwggHTMAwGA1UdEwEB/wQCMAAwHwYDVR0jBBgwFoAUQoNtgHwJhGf9 gFer8Sb1d8gignEwfQYIKwYBBQUHAQEEcTBvMDoGCCsGAQUFBzAChi5odHRwOi8v Y2FjZXJ0LmFjdGFsaXMuaXQvY2VydHMvYWN0YWxpcy1hdXRkdmczMDEGCCsGAQUF BzABhiVodHRwOi8vb2NzcDA2LmFjdGFsaXMuaXQvVkEvQVVUSERWLUczMCMGA1Ud EQQcMBqCDCoubWFyY2gyMS5pdIIKbWFyY2gyMS5pdDBRBgNVHSAESjBIMDwGBiuB HwEXATAyMDAGCCsGAQUFBwIBFiRodHRwczovL3d3dy5hY3RhbGlzLml0L2FyZWEt ZG93bmxvYWQwCAYGZ4EMAQIBMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcD ATBIBgNVHR8EQTA/MD2gO6A5hjdodHRwOi8vY3JsMDYuYWN0YWxpcy5pdC9SZXBv c2l0b3J5L0FVVEhEVi1HMy9nZXRMYXN0Q1JMMB0GA1UdDgQWBBS6NWk5ZrtU8x0l MKDxepA6OY/cPTAOBgNVHQ8BAf8EBAMCBaAwEwYKKwYBBAHWeQIEAwEB/wQCBQAw DQYJKoZIhvcNAQELBQADggIBAE5abDs3mYgicwMmTwynU+SjqnPy/+f2KGQbR3D6 jOGPPVnQ4uuAL+8AbO6DVPKnIAZhlYMh0Ucc410EbnJ7Q1jXxyBtmkzBFPRTW3Mb Mk8Z9DCKFDGpK1kO+RiEGjQiWIyLaMefLWJOzViJbEvwL8/QxS81dMBlZ/Xs4VtG 7TXcJDfy0AgeeTFlVvzpLjPtnUln+S5dCQgp4y9KdswMa8UwkPnyKoEZhn21K9l1 N4gRZhUnR1MZSd13ng5pShNZHYKCVwAmVAh/Nh+k44YWG7qzQJJl/Jl5+g9+JesI H5gypBNvjZ7vbaoSZ8YKWw4ar1rt4uvbMcnOicBCswiX/6IXNITqbSOjtBdXSQhS 1lHXj1bT9gsxRjzJXjFuhnNO2AXbZgMXJD6DY9sD1jKpH6S4Utws1vsGYpSIVVjc vdMlv9PwsHRiOsbDhwwz/mu7lSbD1o2sb3Q+p+dvpoZh6ZXqwNtoYIOEFn6FtCm/ nq7Rkl4SwD3dY/BhgkWiL2WmRiKmO85dXkPUUEmUvi+rgLJY2Z3FsH9e9148t1J6 KgT3anxK/EgH/Mp54fohutguDKx8pjFAwVcH3Q3vm1rXw+SyhyDOB32KI7xKk4ev qC/HXXXfJnDhkD/b+g/O+tTiJY55KtkMV5OcJrR2x4L9n29cG6x466P0r20ovmAA 2oeG -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4B9IIIQu2a/1Q27nfqC nvX5+2f+dqE/GkWPMWDbR4Y0R02AzYkkUzKohBZzDXS8jIKtNzdQmDEHWoJkswl6 69JpezHCx7B40USJSwfubKVB84ELKhGxvpEJ8NoPy02p42OwPnTMP6vQZIogSrh6 fauhu3z64lUIBiZY6QOBBQm/3QVzPkgiSJXFpmOKLMvQ0EdXgw7x3z4TP3gGyzl7 zoZA0MJxY0WTg4KewAgI2anWyjqaIZaE7/sXhJHHx6LuGCQuuw9bRyXq6dpcXtNr 5jJN4jVfPPApUWL31TAFUk8g/5o4mFIskSsHMs4vh4n34PbWoKkhDgFX1/S2kmh9 HwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 103513289431881023224929100160023850671 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bergamo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Ponte San Pietro' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis S.p.A.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis Domain Validation Server CA G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-05 09:14:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-05 09:14:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.march21.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21650110326740797694307322088884537367864191034263395747898668006861321265848040997153763712270986265997950029133495228624467879939318921475733747321009032175288299454282272527503238855718368868725730346249351750091129010390451303157043991505951522742943934206564500528308548941553510562255499037293846710172466437873651233391391805731599749339814016308750174220780781492687984680579343543744602986458718014590975144556408613378042116943340483791202237233132730751107347097374038559242891860367602676151943919265085234734491707283806083814266022374989653684031842822526691480081756264631253868028997100784587561794847 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 42836d807c098467fd8057abf126f577c8228271 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacert.actalis.it/certs/actalis-autdvg3' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp06.actalis.it/VA/AUTHDV-G3' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.march21.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'march21.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.159.1.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.actalis.it/area-download' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl06.actalis.it/Repository/AUTHDV-G3/getLastCRL' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ba35693966bb54f31d2530a0f17a903a398fdc3d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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