curaseptspa.it

Issued by R3

About this certificate

This digital certificate with serial number 04:96:8d:ba:e5:36:b8:78:32:11:b5:de:0e:55:43:41:17:4c was issued on by Let's Encrypt.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=curaseptspa.it

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:96:8d:ba:e5:36:b8:78:32:11:b5:de:0e:55:43:41:17:4c
Serial Number (int): 399679890328810327283373438875291267176268
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: e7:36:a1:a6:d6:90:44:d6:c5:78:c2:ef:7f:bb:a1:04:d0:fe:64:ab
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 30:0a:4e:59:b2:e9:d5:15:92:08:ce:9c:a9:ec:09:79:aa:5e:a7:57
Fingerprint (sha256): 4b:bd:bd:11:e8:e3:e0:ac:8f:fe:4c:73:19:4d:70:dc:85:e7:d3:31:7a:ac:42:91:1f:93:92:8a:e9:fc:fa:95

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate curaseptspa.it

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for curaseptspa.it

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

curaseptspa.it
curasf.site.tb-hosting.com
www.curaseptspa.it

Other certificates including the domain name curaseptspa.it

(limited to 100 certificates)
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
*.curaseptspa.it
curaseptspa.it
curaseptspa.it
*.curaseptspa.it
*.curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
mail.curaden.it
curaseptspa.it
curaseptspa.it
curaseptspa.it

Certificate

The complete raw certificate details for curaseptspa.it in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 399679890328810327283373438875291267176268
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-03 12:24:55 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-01 12:24:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'curaseptspa.it'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 760915864659483299865816739139107020297243975512630090216106058527704042745649031848430974693248180645294775027028625266831942749387782200273108865514178909282503289273677316338677436923699828349354924024866092014176938324398938682920924303290406530159808654245449429920522135586826696576807396373227365947007315571817315340549920741478980844867500874529878876118926233941433119821040880199676471627028818852883673072254569611457549123174145601030570606080966405487255562441520802904949334362210168383459202173313417826744263146703702887019383817237254117905388375554241565008711645055983065375835531835047382440957057571425601779940512338870637903057251566952683558775255003303161354666321537472758116003312651569256118390776551866479791764323445635583445535197779319862634650732132977328114296981966437493007088797926173296022546372024289164377880590386013454003472616536954759218955619077386096742565238544936824949565303344091398359417622951234581714323660824093633294472285821271913839011913506445197936171079535793806716399440876964073690769866013997228555039348318014154524258551522175196056045697407196922289098591580747317404232732449635149840194025990222144945946732709228974472098644916629805706080364639438319364843606451
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e736a1a6d69044d6c578c2ef7fbba104d0fe64ab
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'curaseptspa.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'curasf.site.tb-hosting.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.curaseptspa.it'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e047d2a81000004030047304502205e0b2da6986bbef968fa455ddb9ed4abd90661cc23568479fa21dba042c08153022100b55f5f3578e0d8173e77d029687015b23b53da409dcb76a1dd46f5bc8e0c2adc00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e047d2c7d0000040300483046022100c84064c4c406488c7e6db1340049d47076038ec8c3e8f97bae4c8d795e676ff9022100d95d4c8a86bf982eda8ae8e366cc8b59d9b058d975cb78b449ecc6a63bf9f9e4
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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