demo.maddalena.it
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:43:b6:c3:40:58:23:d4:27:3d:4d:47:9f:b9:c6:e8:95:a3 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=demo.maddalena.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:43:b6:c3:40:58:23:d4:27:3d:4d:47:9f:b9:c6:e8:95:a3Serial Number (int): 284378709677161267360056640572424999966115
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ad:fc:19:d2:32:89:33:a1:a0:62:14:2a:f9:43:15:33:19:ed:58:d1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ed:08:4b:18:17:09:22:8d:67:9a:3d:c4:8d:85:50:c9:e2:20:8f:6f
Fingerprint (sha256): 57:6c:7d:b9:f3:8b:fd:17:d3:84:1a:10:b8:fb:6a:44:a3:af:57:26:b8:15:b7:50:f0:bd:f8:71:21:48:1e:e1
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate demo.maddalena.it
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for demo.maddalena.it
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
demo.maddalena.it
ww2.maddalena.it
ww2.maddalena.it
Other certificates including the domain name maddalena.it
(limited to 100 certificates)
demo.maddalena.it
ww2.maddalena.it
*.maddalena.it
*.maddalena.it
ww2.maddalena.it
ldap1.zimbra-ilger.com
ldap1.zimbra-ilger.com
meeting.maddalena.it
*.maddalena.it
maddalena.it
meeting.omega-dguv.de
maddalena.it
ldap1.zimbra-ilger.com
demo.maddalena.it
maddalena.it
demo.maddalena.it
ldap1.zimbra-ilger.com
maddalena01.ilger.com
*.maddalena.it
ambry.maddalena.it
maddalena.it
maddalena.it
ww2.maddalena.it
*.maddalena.it
proxy1.zimbra-ilger.com
*.maddalena.it
maddalena.it
*.maddalena.it
meeting.yellowcircle.co.uk
maddalena.it
maddalena.it
ldap1.zimbra-ilger.com
proxy1.zimbra-ilger.com
ldap1.zimbra-ilger.com
*.maddalena.it
demo.maddalena.it
ldap1.zimbra-ilger.com
demo.maddalena.it
*.maddalena.it
*.maddalena.it
ldap1.zimbra-ilger.com
*.maddalena.it
ldap1.zimbra-ilger.com
maddalena.it
ww2.maddalena.it
*.maddalena.it
*.maddalena.it
ww2.maddalena.it
ldap1.zimbra-ilger.com
ldap1.zimbra-ilger.com
meeting.maddalena.it
*.maddalena.it
maddalena.it
meeting.omega-dguv.de
maddalena.it
ldap1.zimbra-ilger.com
demo.maddalena.it
maddalena.it
demo.maddalena.it
ldap1.zimbra-ilger.com
maddalena01.ilger.com
*.maddalena.it
ambry.maddalena.it
maddalena.it
maddalena.it
ww2.maddalena.it
*.maddalena.it
proxy1.zimbra-ilger.com
*.maddalena.it
maddalena.it
*.maddalena.it
meeting.yellowcircle.co.uk
maddalena.it
maddalena.it
ldap1.zimbra-ilger.com
proxy1.zimbra-ilger.com
ldap1.zimbra-ilger.com
*.maddalena.it
demo.maddalena.it
ldap1.zimbra-ilger.com
demo.maddalena.it
*.maddalena.it
*.maddalena.it
ldap1.zimbra-ilger.com
*.maddalena.it
ldap1.zimbra-ilger.com
maddalena.it
Certificate
The complete raw certificate details for demo.maddalena.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFazCCBFOgAwIBAgISA0O2w0BYI9QnPU1Hn7nG6JWjMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAxMTQwMDM5NTJaFw0x OTA0MTQwMDM5NTJaMBwxGjAYBgNVBAMTEWRlbW8ubWFkZGFsZW5hLml0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3GqLN6umBX85cwMHWBSxibNxLya GWJhzU7f8b6VQj3PClIC6k39ke4lpR0soH+D/mfnFkT8asmC8aA+CH0fRRCB0ZJd MP19Z1nloE+lYoFveKi9p+OahmyLEC/K+5gqufYEISydq9Q5ShIZpBzO5FJc4NBU twy/nZkeJYiEz7bAZfXuQEsvek7zM6fLFiYzP21AIhEwqxyc8nwEC2rHBCS27Vtr ++6HcF/LLG4lq7o4z4NXSSs2MG42LyV2QDE3GSiqVuPTTM+k57Bj9mMpDViwpx9z vl0ji8rCEGnCk2Eh3DrJ5QAKgMzbSNDzfDnxRG7I8md4CP1zb6M48TONRwIDAQAB o4ICdzCCAnMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSt/BnSMokzoaBiFCr5QxUz Ge1Y0TAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcB AQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlw dC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlw dC5vcmcvMC4GA1UdEQQnMCWCEWRlbW8ubWFkZGFsZW5hLml0ghB3dzIubWFkZGFs ZW5hLml0MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHW eQIEAgSB9ASB8QDvAHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH9HgA AAFoSgPYdAAABAMARzBFAiEA9uXqRDfqoCQ1042rF70ByuS6HvVquguCbqxgdwlk OuMCIEfvdv3usXgksbjGvFqYiwoSnUbo+bhNQ15VSvzGZ3TzAHUAdH7agzGtMxCR IZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFoSgPaUgAABAMARjBEAiBE0JNBFbl1 PIyZF08Kncv2U49CjI56zGWtkx0cEZWmFwIgZhh9vHZ0pB0xvBlvHizUM7N2IHky Qw/iLL/+OyanjkQwDQYJKoZIhvcNAQELBQADggEBAG1UjkJdq162WPWlNNICNaEP WH6uRWLmlcru8MEmJmFwXzhaQP5wXUllrXZ5p3WEWGlfJZS/OJilBy/OGuuej5IS 9Eh69trg/6c/krjSQOYdsxZ5o6mXld38ufePqdt1yWoTW6Yznxc1jBRDdUC2H//V w+4N61+p8UWleo4cLS+idSggpoaEPE+1YAZi4XE/J5gVJKXbXD+RXJ3dKMKuEpwX pTa8L6LKH6wYj+JBX0tcW9c3Vl6QqkhsAOiSX5ldJJIl0yibw2f6dxVK4yhjo2s5 4qnCgi8dLAVEMkvcERq4lpy71zogonjrU/ZNt6f25FwOciG1NiBHheMXXPZVTPc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3GqLN6umBX85cwMHWBS xibNxLyaGWJhzU7f8b6VQj3PClIC6k39ke4lpR0soH+D/mfnFkT8asmC8aA+CH0f RRCB0ZJdMP19Z1nloE+lYoFveKi9p+OahmyLEC/K+5gqufYEISydq9Q5ShIZpBzO 5FJc4NBUtwy/nZkeJYiEz7bAZfXuQEsvek7zM6fLFiYzP21AIhEwqxyc8nwEC2rH BCS27Vtr++6HcF/LLG4lq7o4z4NXSSs2MG42LyV2QDE3GSiqVuPTTM+k57Bj9mMp DViwpx9zvl0ji8rCEGnCk2Eh3DrJ5QAKgMzbSNDzfDnxRG7I8md4CP1zb6M48TON RwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 284378709677161267360056640572424999966115 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-14 00:39:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-14 00:39:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demo.maddalena.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25682426083952961352562880492094808465731135006886924896208293468550012675995210582147824559611454067044468134742918877083139423481896815211666733756717065573838216827276693786660626110601770970742168825175642193468576920991208364544528026521507458351010695289836557473363775253336621972747409812551638648831304760880609979618321807155601337958145787966602679851087670613694133591343404407410746051467345190136912048251484132793879145871449769270693768660696532534589373991599382732258085919754804157020452310268239457796348037622066345394545826630675230343831623362425228590307362222716715581178221910526655567465799 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) adfc19d2328933a1a062142af943153319ed58d1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.maddalena.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ww2.maddalena.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001684a03d8740000040300473045022100f6e5ea4437eaa02435d38dab17bd01cae4ba1ef56aba0b826eac607709643ae3022047ef76fdeeb17824b1b8c6bc5a988b0a129d46e8f9b84d435e554afcc66774f3007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc56000001684a03da520000040300463044022044d0934115b9753c8c99174f0a9dcbf6538f428c8e7acc65ad931d1c1195a617022066187dbc7674a41d31bc196f1e2cd433b376207932430fe22cbffe3b26a78e44 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 006d548e425dab5eb658f5a534d20235a10f587eae4562e695caeef0c1262661705f385a40fe705d4965ad7679a7758458695f2594bf3898a5072fce1aeb9e8f9212f4487af6dae0ffa73f92b8d240e61db31679a3a99795ddfcb9f78fa9db75c96a135ba6339f17358c14437540b61fffd5c3ee0deb5fa9f145a57a8e1c2d2fa2752820a686843c4fb5600662e1713f27981524a5db5c3f915c9ddd28c2ae129c17a536bc2fa2ca1fac188fe2415f4b5c5bd737565e90aa486c00e8925f995d249225d3289bc367fa77154ae32863a36b39e2a9c2822f1d2c0544324bdc111ab8969cbbd73a20a278eb53f64db7a7f6e45c0e7221b536204785e3175cf6554cf7