demo.maddalena.it

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:43:b6:c3:40:58:23:d4:27:3d:4d:47:9f:b9:c6:e8:95:a3 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=demo.maddalena.it

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:43:b6:c3:40:58:23:d4:27:3d:4d:47:9f:b9:c6:e8:95:a3
Serial Number (int): 284378709677161267360056640572424999966115
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: ad:fc:19:d2:32:89:33:a1:a0:62:14:2a:f9:43:15:33:19:ed:58:d1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): ed:08:4b:18:17:09:22:8d:67:9a:3d:c4:8d:85:50:c9:e2:20:8f:6f
Fingerprint (sha256): 57:6c:7d:b9:f3:8b:fd:17:d3:84:1a:10:b8:fb:6a:44:a3:af:57:26:b8:15:b7:50:f0:bd:f8:71:21:48:1e:e1

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate demo.maddalena.it

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for demo.maddalena.it

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

demo.maddalena.it
ww2.maddalena.it

Other certificates including the domain name maddalena.it

(limited to 100 certificates)
demo.maddalena.it
ww2.maddalena.it
*.maddalena.it
*.maddalena.it
ww2.maddalena.it
ldap1.zimbra-ilger.com
ldap1.zimbra-ilger.com
meeting.maddalena.it
*.maddalena.it
maddalena.it
meeting.omega-dguv.de
maddalena.it
ldap1.zimbra-ilger.com
demo.maddalena.it
maddalena.it
demo.maddalena.it
ldap1.zimbra-ilger.com
maddalena01.ilger.com
*.maddalena.it
ambry.maddalena.it
maddalena.it
maddalena.it
ww2.maddalena.it
*.maddalena.it
proxy1.zimbra-ilger.com
*.maddalena.it
maddalena.it
*.maddalena.it
meeting.yellowcircle.co.uk
maddalena.it
maddalena.it
ldap1.zimbra-ilger.com
proxy1.zimbra-ilger.com
ldap1.zimbra-ilger.com
*.maddalena.it
demo.maddalena.it
ldap1.zimbra-ilger.com
demo.maddalena.it
*.maddalena.it
*.maddalena.it
ldap1.zimbra-ilger.com
*.maddalena.it
ldap1.zimbra-ilger.com
maddalena.it

Certificate

The complete raw certificate details for demo.maddalena.it in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFazCCBFOgAwIBAgISA0O2w0BYI9QnPU1Hn7nG6JWjMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAxMTQwMDM5NTJaFw0x
OTA0MTQwMDM5NTJaMBwxGjAYBgNVBAMTEWRlbW8ubWFkZGFsZW5hLml0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3GqLN6umBX85cwMHWBSxibNxLya
GWJhzU7f8b6VQj3PClIC6k39ke4lpR0soH+D/mfnFkT8asmC8aA+CH0fRRCB0ZJd
MP19Z1nloE+lYoFveKi9p+OahmyLEC/K+5gqufYEISydq9Q5ShIZpBzO5FJc4NBU
twy/nZkeJYiEz7bAZfXuQEsvek7zM6fLFiYzP21AIhEwqxyc8nwEC2rHBCS27Vtr
++6HcF/LLG4lq7o4z4NXSSs2MG42LyV2QDE3GSiqVuPTTM+k57Bj9mMpDViwpx9z
vl0ji8rCEGnCk2Eh3DrJ5QAKgMzbSNDzfDnxRG7I8md4CP1zb6M48TONRwIDAQAB
o4ICdzCCAnMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr
BgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSt/BnSMokzoaBiFCr5QxUz
Ge1Y0TAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcB
AQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlw
dC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlw
dC5vcmcvMC4GA1UdEQQnMCWCEWRlbW8ubWFkZGFsZW5hLml0ghB3dzIubWFkZGFs
ZW5hLml0MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI
KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHW
eQIEAgSB9ASB8QDvAHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH9HgA
AAFoSgPYdAAABAMARzBFAiEA9uXqRDfqoCQ1042rF70ByuS6HvVquguCbqxgdwlk
OuMCIEfvdv3usXgksbjGvFqYiwoSnUbo+bhNQ15VSvzGZ3TzAHUAdH7agzGtMxCR
IZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFoSgPaUgAABAMARjBEAiBE0JNBFbl1
PIyZF08Kncv2U49CjI56zGWtkx0cEZWmFwIgZhh9vHZ0pB0xvBlvHizUM7N2IHky
Qw/iLL/+OyanjkQwDQYJKoZIhvcNAQELBQADggEBAG1UjkJdq162WPWlNNICNaEP
WH6uRWLmlcru8MEmJmFwXzhaQP5wXUllrXZ5p3WEWGlfJZS/OJilBy/OGuuej5IS
9Eh69trg/6c/krjSQOYdsxZ5o6mXld38ufePqdt1yWoTW6Yznxc1jBRDdUC2H//V
w+4N61+p8UWleo4cLS+idSggpoaEPE+1YAZi4XE/J5gVJKXbXD+RXJ3dKMKuEpwX
pTa8L6LKH6wYj+JBX0tcW9c3Vl6QqkhsAOiSX5ldJJIl0yibw2f6dxVK4yhjo2s5
4qnCgi8dLAVEMkvcERq4lpy71zogonjrU/ZNt6f25FwOciG1NiBHheMXXPZVTPc=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3GqLN6umBX85cwMHWBS
xibNxLyaGWJhzU7f8b6VQj3PClIC6k39ke4lpR0soH+D/mfnFkT8asmC8aA+CH0f
RRCB0ZJdMP19Z1nloE+lYoFveKi9p+OahmyLEC/K+5gqufYEISydq9Q5ShIZpBzO
5FJc4NBUtwy/nZkeJYiEz7bAZfXuQEsvek7zM6fLFiYzP21AIhEwqxyc8nwEC2rH
BCS27Vtr++6HcF/LLG4lq7o4z4NXSSs2MG42LyV2QDE3GSiqVuPTTM+k57Bj9mMp
DViwpx9zvl0ji8rCEGnCk2Eh3DrJ5QAKgMzbSNDzfDnxRG7I8md4CP1zb6M48TON
RwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 284378709677161267360056640572424999966115
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-14 00:39:52 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-14 00:39:52 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demo.maddalena.it'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25682426083952961352562880492094808465731135006886924896208293468550012675995210582147824559611454067044468134742918877083139423481896815211666733756717065573838216827276693786660626110601770970742168825175642193468576920991208364544528026521507458351010695289836557473363775253336621972747409812551638648831304760880609979618321807155601337958145787966602679851087670613694133591343404407410746051467345190136912048251484132793879145871449769270693768660696532534589373991599382732258085919754804157020452310268239457796348037622066345394545826630675230343831623362425228590307362222716715581178221910526655567465799
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							adfc19d2328933a1a062142af943153319ed58d1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.maddalena.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ww2.maddalena.it'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001684a03d8740000040300473045022100f6e5ea4437eaa02435d38dab17bd01cae4ba1ef56aba0b826eac607709643ae3022047ef76fdeeb17824b1b8c6bc5a988b0a129d46e8f9b84d435e554afcc66774f3007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc56000001684a03da520000040300463044022044d0934115b9753c8c99174f0a9dcbf6538f428c8e7acc65ad931d1c1195a617022066187dbc7674a41d31bc196f1e2cd433b376207932430fe22cbffe3b26a78e44
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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