www.resortstoscana.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:c8:b5:d1:df:e8:70:ac:af:39:00:fb:62:fd:82:b3:a2:a7 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.resortstoscana.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c8:b5:d1:df:e8:70:ac:af:39:00:fb:62:fd:82:b3:a2:a7Serial Number (int): 329635011178142082585955036844899106529959
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 83:13:8b:5b:1b:17:ae:ee:18:5a:f7:4c:7c:52:e4:80:e2:39:ab:ea
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ac:27:a1:a6:b0:b5:ee:c9:f2:2f:67:e3:4e:7d:d5:1d:12:41:11:9b
Fingerprint (sha256): 56:ac:a0:1e:2c:c8:ff:0a:65:d9:24:7b:01:5c:9f:41:d9:a4:a7:ad:bd:a9:63:cf:db:25:0b:2f:e3:ec:b5:6d
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.resortstoscana.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.resortstoscana.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.resortstoscana.com
Other certificates including the domain name resortstoscana.com
(limited to 100 certificates)
resortstoscana.com
www.resortstoscana.com
resortstoscana.com
www.resortstoscana.com
resortstoscana.com
www.resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
www.resortstoscana.com
www.resortstoscana.com
73282.com
villingenschwenningen.org
www.resortstoscana.com
resortstoscana.com
valutazionemoto.com
www.resortstoscana.com
resortstoscana.com
www.resortstoscana.com
resortstoscana.com
www.resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
www.resortstoscana.com
www.resortstoscana.com
73282.com
villingenschwenningen.org
www.resortstoscana.com
resortstoscana.com
valutazionemoto.com
Certificate
The complete raw certificate details for www.resortstoscana.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZTCCBU2gAwIBAgISA8i10d/ocKyvOQD7Yv2Cs6KnMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MTAyMzIyMjlaFw0x OTEyMDkyMzIyMjlaMCExHzAdBgNVBAMTFnd3dy5yZXNvcnRzdG9zY2FuYS5jb20w ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDIPjo/Vn6YXuW52imdNXoS Q9XGUQLgMs8QmGF8UPgoDP4CNvL+KVw6/ptWBc6BsWlNIZiib/cgb/ueXa3tnKLE uGkhVmjwuRVEonHvZWjukBBb2xMVBGzNky7x0gz+cXwxGAryl8LqAfX40DC0/IM/ LKj2xbjg4pYwSPHm3Mo0xnzhIOzeZ7zR/F+81Lma7eg49IBtf28mNPxgChTf3pQX 2N+PA5OWaMrJaHSh0ie7S6r6ynKeHkvOm239s+Kul8G5oomEzdcBFAqhV4WReej9 ARv2vVO+XYdqwgFNB1eJuUVp4kUsDnDRK+YfNVgq+V1Kj9ymP9sDfo5GcPgEANSe VNc1jO5eEwBYeZ6PaJ3QXPsOBRzGMTGDVliT1n+VkkZa3gb4N3QR6auU6IrLVir1 Dz+dyoh+piFPqq5aAbPeZrGFO0IIz//Rt6soJHVeJZhLBc313PxYYzAGP1MKW5vV cEypPfh2uE1UiX/pJEv/GlaFjbBnQQiGErtRunhqy5eXTfvbwD4l/+UPg710CPW9 pjS1tKu47WlA1IYPCfJ6v5RIZk4WhekVvR7wV36yceLVYPz/se0YvkUFnCTtEA3C oZ/egekkAE9hW1H6TDMDl2Ux1hXv5LsPo24ePi3BSF0QpPrnSO22QZfRbY5Tf/x7 G/CpE9+2SFRm3BZyaSxk9QIDAQABo4ICbDCCAmgwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBSDE4tbGxeu7hha90x8UuSA4jmr6jAfBgNVHSMEGDAWgBSoSmpjBH3duubR ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEGA1UdEQQaMBiCFnd3dy5yZXNv cnRzdG9zY2FuYS5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEF BgorBgEEAdZ5AgQCBIH2BIHzAPEAdgB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3 NXnmEHvMVgAAAW0dsz8lAAAEAwBHMEUCIAxkQRF5AoyjMh3V1SoHBYYHnvf2FVIo Nexba0BcthYJAiEAwRenmQ9Vl2Gj6BaXKPbWh/UolkpfAS9a1POdQn9/gnsAdwBj 8tvN6DvMLM8LcoQnV2szpI1hd4+9daY4scdoVEvYjQAAAW0dsz9DAAAEAwBIMEYC IQDsLxRVk4qpP62/IsI/fxSIb72ZU65hTZsEyDeJxc1H9AIhAIgQzk+MpaHc1bsF JDzRvSPmUanAXVdvpneIQdgR/ByLMA0GCSqGSIb3DQEBCwUAA4IBAQB8zNouFTdI /MBJqMricV10/VM6Y0ckFzW1mPa3RQEu/LuA5tCyIJsdmwKeE4kqJFeJgYpBcTsU skg9bs5XynWBGBowJLnDkv9OH1MkbO9cTssff/zIUPFpgX9tC34Gw6yolHnRAudN vRL/9xyJciTxDD2Ao+kj4qLoVMIs6KgNCM4VAMqcR8zEd7nKQYcijSCLs05cUOnj vQeJqhcLh5wzkgnVHBV22na423AqRpzuVySSiUZi2G6Apu//eQ0BZfmx2ji3ySP2 gQHMtmGBwuvRLilcswLv6uepFmPS+0bPgyxRKYqQjizttV2WYhrSNLZTWrzP3Txa wZYyKETdSmiP -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyD46P1Z+mF7ludopnTV6 EkPVxlEC4DLPEJhhfFD4KAz+Ajby/ilcOv6bVgXOgbFpTSGYom/3IG/7nl2t7Zyi xLhpIVZo8LkVRKJx72Vo7pAQW9sTFQRszZMu8dIM/nF8MRgK8pfC6gH1+NAwtPyD Pyyo9sW44OKWMEjx5tzKNMZ84SDs3me80fxfvNS5mu3oOPSAbX9vJjT8YAoU396U F9jfjwOTlmjKyWh0odInu0uq+spynh5Lzptt/bPirpfBuaKJhM3XARQKoVeFkXno /QEb9r1Tvl2HasIBTQdXiblFaeJFLA5w0SvmHzVYKvldSo/cpj/bA36ORnD4BADU nlTXNYzuXhMAWHmej2id0Fz7DgUcxjExg1ZYk9Z/lZJGWt4G+Dd0EemrlOiKy1Yq 9Q8/ncqIfqYhT6quWgGz3maxhTtCCM//0berKCR1XiWYSwXN9dz8WGMwBj9TClub 1XBMqT34drhNVIl/6SRL/xpWhY2wZ0EIhhK7Ubp4asuXl03728A+Jf/lD4O9dAj1 vaY0tbSruO1pQNSGDwnyer+USGZOFoXpFb0e8Fd+snHi1WD8/7HtGL5FBZwk7RAN wqGf3oHpJABPYVtR+kwzA5dlMdYV7+S7D6NuHj4twUhdEKT650jttkGX0W2OU3/8 exvwqRPftkhUZtwWcmksZPUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 329635011178142082585955036844899106529959 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-10 23:22:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-09 23:22:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.resortstoscana.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 816920478328189037728644993980347357558338481775466249731781488652405956994661428702334041140743307374014062446903946047910143335634548933292231806173857156643141753333426786018848882968069075662514078643528911492908396318764186912771647197983964304729058273047198219411094474009461941125898025100367901694186929018248804951375889968650439706451746363461516827131363441985955921812665918774467523131765067938244929085161943928266481209342187727291570297846849105314854448985803326212664577764502365432046796868278418202816154999063080962702551871104133696005162564251610614988952802857229286448630868713184173872799191614245397788790114260712091378393870488118242053686772289023132801997309752461284403704765243899768090297483073599081818938885405178440507506336707362772800701482141723327868996559788848447813661903802834957565181166750873746892294991429006374449623659063860133711595630782033292700103875618027998217255516139075191325089657450960700004639259666494700643201896309083813286514103765528041275576922755602451495185445252119475100397784811678988890569570132014587488015484440781578937094288988621499667146600958669955800891869747907118121719324117608343646472379669611895714126445971255345754196433939567161791839233269 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 83138b5b1b17aeee185af74c7c52e480e239abea . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.resortstoscana.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d1db33f25000004030047304502200c64411179028ca3321dd5d52a070586079ef7f615522835ec5b6b405cb61609022100c117a7990f559761a3e8169728f6d687f528964a5f012f5ad4f39d427f7f827b00770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d1db33f430000040300483046022100ec2f1455938aa93fadbf22c23f7f14886fbd9953ae614d9b04c83789c5cd47f40221008810ce4f8ca5a1dcd5bb05243cd1bd23e651a9c05d576fa6778841d811fc1c8b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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