curaseptspa.it
Issued by R3
About this certificate
This digital certificate with serial number 04:96:8d:ba:e5:36:b8:78:32:11:b5:de:0e:55:43:41:17:4c was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=curaseptspa.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:96:8d:ba:e5:36:b8:78:32:11:b5:de:0e:55:43:41:17:4cSerial Number (int): 399679890328810327283373438875291267176268
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e7:36:a1:a6:d6:90:44:d6:c5:78:c2:ef:7f:bb:a1:04:d0:fe:64:ab
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 30:0a:4e:59:b2:e9:d5:15:92:08:ce:9c:a9:ec:09:79:aa:5e:a7:57
Fingerprint (sha256): 4b:bd:bd:11:e8:e3:e0:ac:8f:fe:4c:73:19:4d:70:dc:85:e7:d3:31:7a:ac:42:91:1f:93:92:8a:e9:fc:fa:95
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate curaseptspa.it
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for curaseptspa.it
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
curaseptspa.it
curasf.site.tb-hosting.com
www.curaseptspa.it
curasf.site.tb-hosting.com
www.curaseptspa.it
Other certificates including the domain name curaseptspa.it
(limited to 100 certificates)
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
*.curaseptspa.it
curaseptspa.it
curaseptspa.it
*.curaseptspa.it
*.curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
mail.curaden.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
*.curaseptspa.it
curaseptspa.it
curaseptspa.it
*.curaseptspa.it
*.curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
mail.curaden.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
Certificate
The complete raw certificate details for curaseptspa.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGjCCBQKgAwIBAgISBJaNuuU2uHgyEbXeDlVDQRdMMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDMxMjI0NTVaFw0yNDA2MDExMjI0NTRaMBkxFzAVBgNVBAMT DmN1cmFzZXB0c3BhLml0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA uoPn7a5VrFaC/aUyBPxp8FaMNj556PqJe5q1Sp+7f4IOKTBUhUVN9q44L5W/nDoK 2tJcNiVY6C/aqsEexX5kh2zb0EQRpv8s90mxL8UWtiqZoTOD4T89fYHiaZW1xwPZ AE0LLKQ+ZMvL0heezBkcB0SNQUlLymqxdi69dk7HeZY+1q4df1K59sT6l52X8m9A pKClQjgPlr3qEa39szfpAGKx/NMSSoTxbqxnxZ63GZioYWN94vR0j1GEh5anlRkd YT9KyeqX9lJWc0YAHyDsQNw1BTTI+OGbeVUkS0xUoL1pJCCq1/nJ7S/F2cJSh1T5 rdzToZV05A8mX4qYNnNL/9+hjTTWcRsMVgdSmWrnLnpzC/ux4lfg4bGJPuPQgrmC HI8nOp5SIN1xX4GCvCaTBYlwjI12o9ll8r0WOQVs1zuwnPBfIwJEM2/6q8qLBLKs cHBC9nMvEnakji5se9Kppx3ckDV5kfH2/jqaWlPNzQjAuo0ETaFcw8eEzig5mrOf aes3o+oTOAxLKDZdjjmqmhCLR0g11L/su3UU7+q+tSwtNhk0Hff0c/Ci1RyH2YI4 yRR1cjaTJTUjXw6UswKrztUcszxAStUV3Ylf8MsMNRUKIND++uWwjJpbTr2onYoE bcHAwHLVxHsWXmlIiezNFuDpFfvSrqiYSRfjkpXJkbMCAwEAAaOCAkEwggI9MA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQU5zahptaQRNbFeMLvf7uhBND+ZKswHwYDVR0j BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6 Ly9yMy5pLmxlbmNyLm9yZy8wSQYDVR0RBEIwQIIOY3VyYXNlcHRzcGEuaXSCGmN1 cmFzZi5zaXRlLnRiLWhvc3RpbmcuY29tghJ3d3cuY3VyYXNlcHRzcGEuaXQwEwYD VR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgDuzdBk 1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAY4EfSqBAAAEAwBHMEUCIF4L LaaYa775aPpFXdue1KvZBmHMI1aEefoh26BCwIFTAiEAtV9fNXjg2Bc+d9ApaHAV sjtT2kCdy3ah3Ub1vI4MKtwAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+r OdiEcwAAAY4EfSx9AAAEAwBIMEYCIQDIQGTExAZIjH5tsTQASdRwdgOOyMPo+Xuu TI15Xmdv+QIhANldTIqGv5gu2oro42bMi1nZsFjZdct4tEnsxqY7+fnkMA0GCSqG SIb3DQEBCwUAA4IBAQBU1G60hHm17EzK+veKeshSwCR4QRvqbkwqCJQLAmYOpKSN BG8+SxYQ4F6YS6sAe2BqjydmzMmVC/Ea8wr0cUDO7EAAH0DbZ4K1wPq51OSuGGgk 5N3dtas1GCmiyS9jjki3sq3FjwKDHvpqepXvbtZnWiZeq1jXbW54dY+tiPZo7zyM xsFftnQb20rRTcbQHwLUHbvhJK8zpwIsgi/SA5awO4JhulJF5RtGHzmrGZr7D4YW u3kZdICbJgmBFMh46bTyaE1cLzrJSountkO/eWOaATewTwGOCdYdaLKToY8gsfHd ICoiiViQ8IlMvF/0VGbZ4spBCvf1zw1Me+JzbrdB -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuoPn7a5VrFaC/aUyBPxp 8FaMNj556PqJe5q1Sp+7f4IOKTBUhUVN9q44L5W/nDoK2tJcNiVY6C/aqsEexX5k h2zb0EQRpv8s90mxL8UWtiqZoTOD4T89fYHiaZW1xwPZAE0LLKQ+ZMvL0heezBkc B0SNQUlLymqxdi69dk7HeZY+1q4df1K59sT6l52X8m9ApKClQjgPlr3qEa39szfp AGKx/NMSSoTxbqxnxZ63GZioYWN94vR0j1GEh5anlRkdYT9KyeqX9lJWc0YAHyDs QNw1BTTI+OGbeVUkS0xUoL1pJCCq1/nJ7S/F2cJSh1T5rdzToZV05A8mX4qYNnNL /9+hjTTWcRsMVgdSmWrnLnpzC/ux4lfg4bGJPuPQgrmCHI8nOp5SIN1xX4GCvCaT BYlwjI12o9ll8r0WOQVs1zuwnPBfIwJEM2/6q8qLBLKscHBC9nMvEnakji5se9Kp px3ckDV5kfH2/jqaWlPNzQjAuo0ETaFcw8eEzig5mrOfaes3o+oTOAxLKDZdjjmq mhCLR0g11L/su3UU7+q+tSwtNhk0Hff0c/Ci1RyH2YI4yRR1cjaTJTUjXw6UswKr ztUcszxAStUV3Ylf8MsMNRUKIND++uWwjJpbTr2onYoEbcHAwHLVxHsWXmlIiezN FuDpFfvSrqiYSRfjkpXJkbMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 399679890328810327283373438875291267176268 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-03 12:24:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-01 12:24:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'curaseptspa.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 760915864659483299865816739139107020297243975512630090216106058527704042745649031848430974693248180645294775027028625266831942749387782200273108865514178909282503289273677316338677436923699828349354924024866092014176938324398938682920924303290406530159808654245449429920522135586826696576807396373227365947007315571817315340549920741478980844867500874529878876118926233941433119821040880199676471627028818852883673072254569611457549123174145601030570606080966405487255562441520802904949334362210168383459202173313417826744263146703702887019383817237254117905388375554241565008711645055983065375835531835047382440957057571425601779940512338870637903057251566952683558775255003303161354666321537472758116003312651569256118390776551866479791764323445635583445535197779319862634650732132977328114296981966437493007088797926173296022546372024289164377880590386013454003472616536954759218955619077386096742565238544936824949565303344091398359417622951234581714323660824093633294472285821271913839011913506445197936171079535793806716399440876964073690769866013997228555039348318014154524258551522175196056045697407196922289098591580747317404232732449635149840194025990222144945946732709228974472098644916629805706080364639438319364843606451 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e736a1a6d69044d6c578c2ef7fbba104d0fe64ab . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'curaseptspa.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'curasf.site.tb-hosting.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.curaseptspa.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e047d2a81000004030047304502205e0b2da6986bbef968fa455ddb9ed4abd90661cc23568479fa21dba042c08153022100b55f5f3578e0d8173e77d029687015b23b53da409dcb76a1dd46f5bc8e0c2adc00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e047d2c7d0000040300483046022100c84064c4c406488c7e6db1340049d47076038ec8c3e8f97bae4c8d795e676ff9022100d95d4c8a86bf982eda8ae8e366cc8b59d9b058d975cb78b449ecc6a63bf9f9e4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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