concittadini.com
Issued by R3
About this certificate
This digital certificate with serial number 04:3e:6e:eb:c1:97:de:14:5f:b7:1c:50:31:63:23:af:d7:27 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=concittadini.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:3e:6e:eb:c1:97:de:14:5f:b7:1c:50:31:63:23:af:d7:27Serial Number (int): 369694089671974504098862595033491724818215
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 68:c8:c8:fb:5d:15:9b:7a:3b:00:3d:a9:f5:c5:8e:03:39:d9:3b:a6
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 2d:2c:65:9d:18:6b:b3:76:39:54:f5:a8:de:9d:6b:92:82:68:2c:04
Fingerprint (sha256): 3e:47:96:38:81:2d:cc:4e:97:0f:e3:4b:50:1f:62:a4:e7:99:73:82:ec:83:b7:9f:6c:07:a3:36:30:0a:48:b9
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate concittadini.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for concittadini.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
concittadini.com
Other certificates including the domain name concittadini.com
(limited to 100 certificates)
www.jesuswasavegan.com
unlockcheshire.com
jenniferhenderson.com
lmkkhb.top
concittadini.com
www.vinbar.com
www.firegain.com
concittadini.com
www.concittadini.com
www.cbn.bible
masterarms.com
www.sorrente.com
cervi.org
stdmatchmaking.com
www.christmascom.com
holdmypodcast.com
audio-rack.com
organicbeecontrol.com
productfeatureorganizer.com
www.canterbo.nl
www.lubbockjointpain.com
www.superbamba.com
catfood.organic
www.ooofoodtrucks.com
unlockcheshire.com
jenniferhenderson.com
lmkkhb.top
concittadini.com
www.vinbar.com
www.firegain.com
concittadini.com
www.concittadini.com
www.cbn.bible
masterarms.com
www.sorrente.com
cervi.org
stdmatchmaking.com
www.christmascom.com
holdmypodcast.com
audio-rack.com
organicbeecontrol.com
productfeatureorganizer.com
www.canterbo.nl
www.lubbockjointpain.com
www.superbamba.com
catfood.organic
www.ooofoodtrucks.com
Certificate
The complete raw certificate details for concittadini.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF7jCCBNagAwIBAgISBD5u68GX3hRftxxQMWMjr9cnMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMjYwNDI2MjVaFw0yNDAzMjUwNDI2MjRaMBsxGTAXBgNVBAMT EGNvbmNpdHRhZGluaS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC AQDawY3kRoVJ/UtIPNM2XsaAGPbogBzGwLOvrKoqrAUufEzM/VCaBkjWwliR/xv+ OvlusKJCuQuvIbqAZMMLlX/8CvOhwYMyCDJxhVmAk7BagtQDGvsHEIyC2HyvJAjh Mka6ry6dzHnN5/G69bfISBMp5jc4CYbyMZUcG391JPJZjfabc675PA3JO96ddiKj y2hG5XzIDKtYX4rMRSk3En9a49c1dp5zcx1BqCCV0xjvsEjpl1GynJv5XXe3oVoD Ta1jolN8NvlChWlPFhvITDO6WSi5LQa28E7G3dBDmvjxdXO0aDQwDZAlCFgduDas igaTMg95twe/dqsEoOf8vaOYapLzmuwcj3al21HoWsP95ba1TV8wWyvPZn1YU4BV qsw43CM9XUHFLe3jh3HGlbOOPq1cTmCaCn+MWVM5cJ4XjYLa61hTK+xbV8j9nTP/ YgCNwqiy7/8/VOhFTPoQjrenCZDbuA/fUkddRuBMd7s6b6X7VgffSSQR/o14nCom OLkE0ACKSP/wHHIAhm7nYuyjvQeaYydSdHdMCgQlpTjcTO965wFT+EpAeSzc4IGQ iBO+LHc+VBh+uGDoh0VA9XY1D3+UcW/bJjrj9NQFfodNizcgDsqwjpWaG6inswqz 3A2nwbX4/nbkFIQEZ1YwpvXrsq+Bcqns1KLxtB6tF5yp7QIDAQABo4ICEzCCAg8w DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRoyMj7XRWbejsAPan1xY4DOdk7pjAfBgNV HSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYI KwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0 cDovL3IzLmkubGVuY3Iub3JnLzAbBgNVHREEFDASghBjb25jaXR0YWRpbmkuY29t MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA SLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGMpJamWgAABAMARzBF AiBfHTMtBm8YNiJmbBBBL8ixxMus/FePi8bEq03ia4ANqwIhAOmsGUJ2fsqwWUTE DA5tosC5GXLoXYCAD6zAWICYJRKBAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70A DS1yb+H61BcAAAGMpJamVwAABAMASDBGAiEA8t2feGiZm0T4r4JQz7lG2G8Sraxx HZE8U5bTprgDgkcCIQCmHqCPaen0VnY8cFWhhCirpSVky6FQ2Upd/2oTGviOpDAN BgkqhkiG9w0BAQsFAAOCAQEATKrvFXyXZrL7n9CRIZWiB8Fx6v6IdGtu9tkQerL3 eEzkthl7sQnen7W8it360GXdf1dEcLJX8f0zy+tYrrSRzdrTWbf7YkfQZMeLLc7c 4+rOMOiAX8ixE83xteXfk0zxXQNm1rg0h8zgORjTv6YUIT7MiMGjnq8t2hoGBrtS qv3hNUVDHDPtPb5vPjX0TUCwfDD+XX40mX2Y641UDY9orUHsHBcT7PpHmPr5+DXf V1QCAGYP/rhQF0VZq4Mz0RukN9Sv5IsSRpN0fOkh/mrX3nBH+XqkXZ3+xUMEsgZn EqjuHORiC2tOvRd0XZTT45rHBoGtBtbgGszaxejW4r+hpw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2sGN5EaFSf1LSDzTNl7G gBj26IAcxsCzr6yqKqwFLnxMzP1QmgZI1sJYkf8b/jr5brCiQrkLryG6gGTDC5V/ /ArzocGDMggycYVZgJOwWoLUAxr7BxCMgth8ryQI4TJGuq8uncx5zefxuvW3yEgT KeY3OAmG8jGVHBt/dSTyWY32m3Ou+TwNyTvenXYio8toRuV8yAyrWF+KzEUpNxJ/ WuPXNXaec3MdQaggldMY77BI6ZdRspyb+V13t6FaA02tY6JTfDb5QoVpTxYbyEwz ulkouS0GtvBOxt3QQ5r48XVztGg0MA2QJQhYHbg2rIoGkzIPebcHv3arBKDn/L2j mGqS85rsHI92pdtR6FrD/eW2tU1fMFsrz2Z9WFOAVarMONwjPV1BxS3t44dxxpWz jj6tXE5gmgp/jFlTOXCeF42C2utYUyvsW1fI/Z0z/2IAjcKosu//P1ToRUz6EI63 pwmQ27gP31JHXUbgTHe7Om+l+1YH30kkEf6NeJwqJji5BNAAikj/8BxyAIZu52Ls o70HmmMnUnR3TAoEJaU43EzveucBU/hKQHks3OCBkIgTvix3PlQYfrhg6IdFQPV2 NQ9/lHFv2yY64/TUBX6HTYs3IA7KsI6Vmhuop7MKs9wNp8G1+P525BSEBGdWMKb1 67KvgXKp7NSi8bQerRecqe0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 369694089671974504098862595033491724818215 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-26 04:26:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-25 04:26:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'concittadini.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 892446908808204402898088426071953603314308587285246648092079201449896026008010321060464439806980693276300556287217171083632064576814438007448911451337756721995684292414075662006278497426131892614534875964043695541082602403576910439618227571461085592140627475362716509988734256439030905613711108326358182958547354216579321066544468159894321480636603530235933845854465456238266806369739309333639718366543721787681495783038525681310539361306035222671064643913771929250112317180989445176777840987941020763163045230768925316559895977911445886277050870482451173304808658161086873001475210469422003123849182662580003744008460021793029990118554871221817020573500565621684104599781841031082811080257986335211423108084223771752201534477951388702540787774023266538729610831632012929474979207331744502841541246374452753210102943852642866932201207370735171899546363383647844349984957514729110285317148735205891554177133524857970634883778081381270249593069801009810922165141318617267591785532568455510960318346516298519504658203687942752688377366386716290752440950826654493064107740168615040418192418656673625564508416312708601238075648971834924324306012274068085311535135986927154731609916909089568330552741449371048003778278882351528137920915949 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 68c8c8fb5d159b7a3b003da9f5c58e0339d93ba6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'concittadini.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ca496a65a000004030047304502205f1d332d066f183622666c10412fc8b1c4cbacfc578f8bc6c4ab4de26b800dab022100e9ac1942767ecab05944c40c0e6da2c0b91972e85d80800facc05880982512810077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ca496a6570000040300483046022100f2dd9f7868999b44f8af8250cfb946d86f12adac711d913c5396d3a6b8038247022100a61ea08f69e9f456763c7055a18428aba52564cba150d94a5dff6a131af88ea4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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