privacy.natur.it

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:90:d6:e9:60:12:fc:cb:98:77:31:c7:10:83:0f:a8:0a:3a was issued on by Let's Encrypt.

With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=privacy.natur.it

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:90:d6:e9:60:12:fc:cb:98:77:31:c7:10:83:0f:a8:0a:3a
Serial Number (int): 310623185176777554520468438591719158057530
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: c1:aa:aa:9d:38:7f:24:33:77:de:83:32:a7:4f:64:2b:e5:0f:a9:31
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): ea:bc:00:00:cb:46:e6:b1:8d:45:c7:35:a9:e6:d6:62:82:a5:d2:d0
Fingerprint (sha256): 4a:04:23:7a:6e:59:97:14:39:70:55:ec:3d:ee:ce:40:89:c4:7c:96:bc:f7:75:ce:8a:5c:a2:ee:75:06:45:4d

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate privacy.natur.it

6

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for privacy.natur.it

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

academy.natur.it
privacy.natur.it
promo.natur.it
www.academy.natur.it
www.privacy.natur.it
www.promo.natur.it

Other certificates including the domain name natur.it

(limited to 100 certificates)
shop.natur.it
shop.natur.it
natur.it
promo.natur.it
natur.expolab.it
natur.expolab.it
natur.expolab.it
promo.natur.it
privacy.natur.it
natur.expolab.it
natur.expolab.it
natur.expolab.it
natur.it
natur.expolab.it
natur.it
natur.it
natur.it
natur.expolab.it
natur.it
academy.natur.it
shop.natur.it
privacy.natur.it
natur.expolab.it
shop.natur.it
shop.natur.it
natur.it
natur.expolab.it
natur.it
natur.expolab.it
shop.natur.it
natur.expolab.it
natur.expolab.it
natur.it
promo.natur.it
natur.expolab.it
promo.natur.it
privacy.expolab.it
promo.natur.it
shop.natur.it
privacy.natur.it
academy.natur.it
promo.natur.it
natur.it
natur.it
natur.it
shop.natur.it
natur.it
shop.natur.it
natur.it
academy.natur.it
shop.natur.it
natur.it
natur.expolab.it
natur.expolab.it
promo.natur.it
shop.natur.it
natur.it
natur.expolab.it
shop.natur.it
promo.natur.it
shop.natur.it
privacy.expolab.it

Certificate

The complete raw certificate details for privacy.natur.it in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2QDv2k/g7dEdfsVlX7R9
TjVkvUvzLkAXPskxqelAA/GULgANY5SxcTfEWRsNdDXG97vFkA5hia5spP6U0Uh3
rly/oaPAr83V9kN6z1ZchBoyVAjrA1e0QxNc7cF5kKy20v3abi1OmjFP43BwtDTI
Abcj0kKU6BO2LgEYR260fkvC9275lgdDDawctcspj13k4llgWO2XxyAhzoIPTFq6
sjj2cZjWMx6MbI1pzqDq11WMKUJwN1M+3Wq+6UWkY7V11bryEexHSjeoJ1V0BsLR
FgiMKQG9rSd19rYFVXQphyVcOlbIuKcsHHLYje5niS3OzYHfCFVBdbZPkL/6eNDa
4wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 310623185176777554520468438591719158057530
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-23 22:21:22 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-21 22:21:22 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'privacy.natur.it'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27394174192535831315543058248454099655348604072824997904494137916362801669389391817646632245356482691827720584583021228007619956789732222274617522008682180198368175448293392767886818909192242537678635055201712823251241734108444101924532762958658025211518075022048496422684952254933317077580753268073303524534094743708362727224508266932876291303714730152822945936946493000457205536010647010021502707988953399394572310301012705701613614943689348481793943925642891724560483864007931314883971222388331463619005676387679772007148745711714152862218303716114760453042037266096765844730721311676629375933061550655778547882723
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c1aaaa9d387f243377de8332a74f642be50fa931
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'academy.natur.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'privacy.natur.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'promo.natur.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.academy.natur.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.privacy.natur.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.promo.natur.it'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016742e0ba050000040300473045022100ce7128d4e00d6beb703d4edb481f55eeac85baee76a2f26d2bee145c5c64b144022001f1623b960b2a3a6b9db4d90cab5ed251ef37e97146a3973e0979df1eca69f7007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016742e0b8650000040300483046022100ac6406bb38a873818f2fe05157ed20fa6dd36c421a8d17449d6e8a66dcabfc63022100da3eea18884135c550c63b7281ea60190b59bb41f8e1872b7080610e38034464
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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