aikidomakotomilano.it

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:71:07:50:06:52:10:85:6f:4a:94:1d:2a:f2:91:85:cf:dc was issued on by Let's Encrypt.

With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=aikidomakotomilano.it

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:71:07:50:06:52:10:85:6f:4a:94:1d:2a:f2:91:85:cf:dc
Serial Number (int): 299798485365262243529482898123548413775836
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 41:a3:19:7f:ab:56:40:f1:46:26:e6:4d:7f:b5:58:00:da:9f:19:9c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): d8:8b:16:28:a2:cd:af:17:15:a5:78:9c:05:6b:32:2f:eb:32:ab:b7
Fingerprint (sha256): 55:2a:dd:d9:33:1d:02:2b:f4:54:c9:79:71:00:53:be:e1:a5:f3:2c:6f:c6:d0:1d:1b:76:98:da:3c:e7:2b:2d

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate aikidomakotomilano.it

7

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for aikidomakotomilano.it

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

aikidomakotomilano.it
autodiscover.aikidomakotomilano.it
cpanel.aikidomakotomilano.it
mail.aikidomakotomilano.it
webdisk.aikidomakotomilano.it
webmail.aikidomakotomilano.it
www.aikidomakotomilano.it

Other certificates including the domain name aikidomakotomilano.it

(limited to 100 certificates)
mail.aikidomakotomilano.it
aikidomakotomilano.it
aikidomakotomilano.it
sni.cloudflaressl.com
sni.cloudflaressl.com
aikidomakotomilano.it
aikidomakotomilano.it
aikidomakotomilano.it
aikidomakotomilano.it
www.aikidomakotomilano.it
aikidomakotomilano.it
aikidomakotomilano.it

Certificate

The complete raw certificate details for aikidomakotomilano.it in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZbHV+y95FSlLPa2vfuE
wzw1nP+vzhwl3asVtQJwf6Aj9bx6pDsBq/9oLRu1kN8e6rbn8X0Pe3OzyjtXgC0O
NcZDTO4mL6eAvfwthYX3ZhMnLwHGCM3+oNvz9E0p82JFmA1u1rjQIFF75GwI/5rn
VLmDDIZwpW6aUQzaiTGv/lxtLOGDGsy95pneqHxS85/0J1edOVFswXmKTyK3zh3S
hnLSavKQYcws4eKB0P2vPyaUjzTuUIA8jZ81ds+EeUnHXZFjy0c6O+orQoN3kHJw
co1pW7NL3llrUwRQ4FdPwcBWn7HFFCz9pQvnY/kWa+Zu9cauD1sFMEhMfJVQK5X5
zwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 299798485365262243529482898123548413775836
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-15 21:51:54 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-13 21:51:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aikidomakotomilano.it'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22923484939742630165066240103544628720313383722537111043387848948199400566994746821121390159138787868937161993592309823975554351488868583081619333468093315306296504793097575442666522511001978177982230057703498600049426468785975017953887980268600340460541167934432374597305402144336898572425416549161030650524926903386945630352306522991912919723430570621067797618580841697526646994790204927577437619951046777421393986881037728548526596497659198514845049048663489677041895684765835978694627728746023355814660482575184916056581041073534483419142677570584317600359579463979736405205742534897417259910429188293278611929551
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							41a3197fab5640f14626e64d7fb55800da9f199c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (209 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aikidomakotomilano.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.aikidomakotomilano.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.aikidomakotomilano.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.aikidomakotomilano.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.aikidomakotomilano.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.aikidomakotomilano.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aikidomakotomilano.it'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee007500c1164ae0a772d2d4392dc80ac10770d4f0c49bde991a4840c1fa075164f63360000001653fc9cb7f0000040300463044022011653ff7668dec8941ced4ce18a4e5620c15fc38ef1757de8c8684d5769a903102207243923f950875d2a8934691e47690ac715af6928d915da6df704c52f988a43f007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001653fc9cb94000004030046304402205a97dbf788eadfe938bae4c7fd058fc47b9800c502d13690e716b898e4088a5802200bd7eff0c78e7677b17846dc0585b05ed4d2654864c04b05dd7b8e232b9cd9b7
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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