bulgari-presslounge.com
Issued by R3
About this certificate
This digital certificate with serial number 04:dc:cd:58:78:66:c3:96:35:cf:70:8a:d9:95:8b:ad:b9:4a was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=bulgari-presslounge.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:dc:cd:58:78:66:c3:96:35:cf:70:8a:d9:95:8b:ad:b9:4aSerial Number (int): 423584215552937863551770129715807696828746
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e1:50:88:d8:e4:e0:b1:25:b8:d4:b9:e7:a7:51:c7:21:da:79:21:a8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 41:a4:3e:6d:b9:8f:bd:c2:96:24:38:10:e6:29:1b:2e:aa:86:00:a1
Fingerprint (sha256): 49:d5:b5:3c:3d:97:f7:50:ac:38:bd:ae:87:ce:a7:40:91:c5:b9:29:35:0f:37:b9:90:6e:a8:86:06:fb:2c:89
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate bulgari-presslounge.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bulgari-presslounge.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.bulgari-presslounge.com
bulgari-presslounge.com
mediakit.bulgari.com
bulgari-presslounge.com
mediakit.bulgari.com
Other certificates including the domain name bulgari-presslounge.com
(limited to 100 certificates)
bulgari-presslounge.com
bulgari-presslounge.com
mediakit.bulgari.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
mediakit.bulgari.com
bulgari-presslounge.com
bulgari-presslounge.com
mediakit.bulgari.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
bulgari-presslounge.com
mediakit.bulgari.com
bulgari-presslounge.com
Certificate
The complete raw certificate details for bulgari-presslounge.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISBNzNWHhmw5Y1z3CK2ZWLrblKMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA2MDIxODU3MTJaFw0yNDA4MzExODU3MTFaMCIxIDAeBgNVBAMT F2J1bGdhcmktcHJlc3Nsb3VuZ2UuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAwWEAo1g39bYoALpt3HfYgnu4PmGms9lRK3K8e03LbcwZ76aPbBHZ 1HF8EzZ1V9KfCv1Gx235xcGf8uWZWuJakikewT6bLFHTVv/DXK348TKmpmzCJOva Q35bNsUuPadFU8SQ2PkwV46drk5Zj89m3VjtZxJOPB3ScqQso9tgLVmDl19/zg8K gMTIjqoJL98PpuJswWDxz6dOOGCB6gbUD7Ri/hD5YI5DjyhBpUYzfbBPq8mDel4v ZueilgCo5b1S/mK2L30rVfIs/oMZ7I8SG1SdisH9Ywdl3sHkGCR4wIe9A9T1wANH 7fiYbEMfsAMrczyt8lHXEiuCzmCUNkA7BwIDAQABo4ICSzCCAkcwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8E AjAAMB0GA1UdDgQWBBThUIjY5OCxJbjUueenUcch2nkhqDAfBgNVHSMEGDAWgBQU LrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGG FWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmku bGVuY3Iub3JnLzBTBgNVHREETDBKghkqLmJ1bGdhcmktcHJlc3Nsb3VuZ2UuY29t ghdidWxnYXJpLXByZXNzbG91bmdlLmNvbYIUbWVkaWFraXQuYnVsZ2FyaS5jb20w EwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwBI sONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY/ahwTGAAAEAwBIMEYC IQCIR3Y+ee7UtrNd92afVHJ7YlikNxE1E5h6cr9x9FP5DwIhAPSNVN6KNoXnGQpj KivsxXVTpBIvKQU0ZcfMWDy842GnAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7D UUhZRnEftZsAAAGP2ocEswAABAMARzBFAiEAtwIle+QlmN66fbeg+jL8zd1ps5FP XeABM0aDSL+6rtsCIG/dQpd+VfDRtPvY5KJlKi3WlyfFO1uzgA7zzzDYD1SSMA0G CSqGSIb3DQEBCwUAA4IBAQALjWHZharFEv/FAfKr6Lq8UL4SmP/rLThmiYNkzW/v 67SH0LuHe3eyHu4bH23s1yIVgYl4qkXvdGtSXcc8rj1Zk61lJ4MBKE1VvVnSttrN l4hJrAKyNxnnQ0HGOa+IVgphS9bCgrlO8FudkvoilIkVSHJmt0ebUGV0qvrkk1G7 ykra4vUJnRk/rugLjrVgS750+kB8ydaYBcZP4SH/m1qjwyQBkvuBykCjBDMhwcxt CG3YS6AyBksH+L2YWoya+fmUCbhJackaz4woTwJLkacKThX4wTuw8nW/ZjCceXbt 9c+VslkRxVbp8rNxWlnuiBZQm18Vg37mpQyMnmyO55hF -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWEAo1g39bYoALpt3HfY gnu4PmGms9lRK3K8e03LbcwZ76aPbBHZ1HF8EzZ1V9KfCv1Gx235xcGf8uWZWuJa kikewT6bLFHTVv/DXK348TKmpmzCJOvaQ35bNsUuPadFU8SQ2PkwV46drk5Zj89m 3VjtZxJOPB3ScqQso9tgLVmDl19/zg8KgMTIjqoJL98PpuJswWDxz6dOOGCB6gbU D7Ri/hD5YI5DjyhBpUYzfbBPq8mDel4vZueilgCo5b1S/mK2L30rVfIs/oMZ7I8S G1SdisH9Ywdl3sHkGCR4wIe9A9T1wANH7fiYbEMfsAMrczyt8lHXEiuCzmCUNkA7 BwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 423584215552937863551770129715807696828746 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-02 18:57:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-31 18:57:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bulgari-presslounge.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24411826570258753397147623772024729026984437832580115019949425266020243948922473641541328805462524007614828724979888880248651388566595888133975341679756310581291734297784816390957331626056530594757578452224167103435890452270383490714864720490920920461718033993337335676904583412514460835507000048488876693283857727743669478856369619897127994876586608461986734617433075658700817484683429776313369596732950538012630896848966923981976988656617909481841593121889731909398549031047720939405997546957850716516586870216775447436973998938911842800795759748056645408558365594159139615891969023103026247942056092769656147819271 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e15088d8e4e0b125b8d4b9e7a751c721da7921a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (76 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bulgari-presslounge.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bulgari-presslounge.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mediakit.bulgari.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018fda8704c600000403004830460221008847763e79eed4b6b35df7669f54727b6258a437113513987a72bf71f453f90f022100f48d54de8a3685e7190a632a2becc57553a4122f29053465c7cc583cbce361a7007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018fda8704b30000040300473045022100b702257be42598deba7db7a0fa32fccddd69b3914f5de00133468348bfbaaedb02206fdd42977e55f0d1b4fbd8e4a2652a2dd69727c53b5bb3800ef3cf30d80f5492 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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