*.novaizolace.cz
Issued by Actalis Domain Validation Server CA G3
About this certificate
This digital certificate with serial number 7b:7d:d6:be:03:b6:eb:ea:1f:48:27:1b:7e:ac:9e:60 was issued on by Actalis S.p.A..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.novaizolace.cz
Actalis S.p.A.
Organization:
Actalis S.p.A.
State / Province:
Bergamo
Locality: Ponte San Pietro
Country: IT
Locality: Ponte San Pietro
Country: IT
This certificate will expire on
Certificate Details
Serial Number (hex): 7b:7d:d6:be:03:b6:eb:ea:1f:48:27:1b:7e:ac:9e:60Serial Number (int): 164148436079017158591979027883933605472
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 33:f6:7b:5b:d8:ef:e6:ea:5a:1d:79:f7:7c:29:40:56:e1:d7:e6:69
AuthorityKeyId: 42:83:6d:80:7c:09:84:67:fd:80:57:ab:f1:26:f5:77:c8:22:82:71
Fingerprint (sha1): 3f:3c:84:9d:17:5d:f2:0e:14:fd:7f:14:eb:b5:09:d8:6b:f4:dd:b6
Fingerprint (sha256): 59:f5:57:ec:6d:a4:52:f3:e2:d8:c9:26:2a:0a:6a:9f:f9:e5:e2:e0:7f:5d:e9:9f:66:93:aa:1f:0b:90:e7:94
Issuing Certificate URL: http://cacert.actalis.it/certs/actalis-autdvg3
Revocation information
OCSP Server: http://ocsp06.actalis.it/VA/AUTHDV-G3CRL Distribution Point: http://crl06.actalis.it/Repository/AUTHDV-G3/getLastCRL
Check the revocation status for certificate *.novaizolace.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.novaizolace.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
novaizolace.cz
*.novaizolace.cz
*.novaizolace.cz
Other certificates including the domain name novaizolace.cz
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.novaizolace.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGCzCCA/OgAwIBAgIQe33WvgO26+ofSCcbfqyeYDANBgkqhkiG9w0BAQsFADCB hDELMAkGA1UEBhMCSVQxEDAOBgNVBAgMB0JlcmdhbW8xGTAXBgNVBAcMEFBvbnRl IFNhbiBQaWV0cm8xFzAVBgNVBAoMDkFjdGFsaXMgUy5wLkEuMS8wLQYDVQQDDCZB Y3RhbGlzIERvbWFpbiBWYWxpZGF0aW9uIFNlcnZlciBDQSBHMzAeFw0yMzEyMjkx NDAwMzNaFw0yNTAxMTkyMTE1MzNaMBsxGTAXBgNVBAMMECoubm92YWl6b2xhY2Uu Y3owggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfgLXGmeq/ksXOsg+l cfAKMIjAfjUfiKrI5j/jZy1tOD3adIAbOTBLyLz3Z1pwVTCqckwRRl7R7XhQKyxk uhUYHWgAeMINLaPfLODJu7qNd5e5wPBaDA+shJfXFoNnwFhsqa+asj0iu2qf0P3L fhPabx8rswEXCUrEodCr18QUaEyNvsntBgfvmu95aogNk6g283iaAeayTXMet5Ib 1gw76YJ5Ze89eP4w/qtAH/a8bRafHmPlFJBpmaa5Xv6aaBOifCKcC2a1NS7wneiL /Nhue9IAwTfu65837nyWH97gMj+K6XKRsvemhhruZ302e8SsBu3CPjasWtBb4byO DZTDAgMBAAGjggHfMIIB2zAMBgNVHRMBAf8EAjAAMB8GA1UdIwQYMBaAFEKDbYB8 CYRn/YBXq/Em9XfIIoJxMH0GCCsGAQUFBwEBBHEwbzA6BggrBgEFBQcwAoYuaHR0 cDovL2NhY2VydC5hY3RhbGlzLml0L2NlcnRzL2FjdGFsaXMtYXV0ZHZnMzAxBggr BgEFBQcwAYYlaHR0cDovL29jc3AwNi5hY3RhbGlzLml0L1ZBL0FVVEhEVi1HMzAr BgNVHREEJDAigg5ub3ZhaXpvbGFjZS5jeoIQKi5ub3ZhaXpvbGFjZS5jejBRBgNV HSAESjBIMDwGBiuBHwEXATAyMDAGCCsGAQUFBwIBFiRodHRwczovL3d3dy5hY3Rh bGlzLml0L2FyZWEtZG93bmxvYWQwCAYGZ4EMAQIBMB0GA1UdJQQWMBQGCCsGAQUF BwMCBggrBgEFBQcDATBIBgNVHR8EQTA/MD2gO6A5hjdodHRwOi8vY3JsMDYuYWN0 YWxpcy5pdC9SZXBvc2l0b3J5L0FVVEhEVi1HMy9nZXRMYXN0Q1JMMB0GA1UdDgQW BBQz9ntb2O/m6lodefd8KUBW4dfmaTAOBgNVHQ8BAf8EBAMCBaAwEwYKKwYBBAHW eQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggIBAI1GmgjAhWwFTS8w4O5DuAZG j8gglPwq1p+wSr+7P++Y0/8B9yio2wgukbA7lEEMc4ghOwaDFZ25xivFfIoBWQAt NDNTOefhGfROvutVJVGExZXxgQThz1dCVq3Oc2YTrWcwC4YE1NVXem2B9xMIr9U7 ErnVV4x2/cQ/vs3QfsbBLKqfK5yuMhdfKUnXeonp59+0y7vdhdbk+650f4va+e94 cW6Gp6dEqK/Ey5D0Eu1zFf37FRm3P2GYPmaAeBnBskYqd8J1oZTgola3Wm6GRrJk QLax3+XifdEQSjXn4qJyLpMOQo1B51Hyud315pfAnpbJaCFp1wpsqGi2qiyJpyrx hyaY9nIosQik7ZK/5yeYjsayeuWj+3Txch2NNdKUqURFHimGCoWbU23UMoIRC7i5 MMGf7Hoa4aKkIjFptIm4iYpluTMCIuRjwfvU2BVG9kf7MvycR0ldJGxnx73ZzbH/ /gfb3po3ifhGkNaWrDLKgRZADzOQOMx10Y0sPm1sGkX/E3GZrq6x5H/astdKk3iI /WKO+DZTV2IiI2VEiaRGgyQlsop9ZYHuH0RDVppT4zzyu60Ft/cUdwmZMiWt08k2 eBLrmM6p7qNe5tm3/AEt4KEEHFz4WSdgL4pa6TAbHMhjxw+mBG1d4GZRI6HE/tm0 2jzcic13oRif/al1iih6 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA34C1xpnqv5LFzrIPpXHw CjCIwH41H4iqyOY/42ctbTg92nSAGzkwS8i892dacFUwqnJMEUZe0e14UCssZLoV GB1oAHjCDS2j3yzgybu6jXeXucDwWgwPrISX1xaDZ8BYbKmvmrI9Irtqn9D9y34T 2m8fK7MBFwlKxKHQq9fEFGhMjb7J7QYH75rveWqIDZOoNvN4mgHmsk1zHreSG9YM O+mCeWXvPXj+MP6rQB/2vG0Wnx5j5RSQaZmmuV7+mmgTonwinAtmtTUu8J3oi/zY bnvSAME37uufN+58lh/e4DI/iulykbL3poYa7md9NnvErAbtwj42rFrQW+G8jg2U wwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 164148436079017158591979027883933605472 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bergamo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Ponte San Pietro' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis S.p.A.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Actalis Domain Validation Server CA G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-29 14:00:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-19 21:15:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.novaizolace.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28214611304370881140616797081541206316061690355059231659878556183621376829143678839145396088914086789293635298261042099067526077806223176332297886462837774059168903249872383503856225066365080976104841998094362731410547541901791490093903599253340779557927655458219568397136146383899295917382933675137925134854512936912646624758921731765860832565584955340654186591072548404135935251368209007431088497313090871027482644918464414060185243916767907044752206936752178404766489018898612134136743482051285248744168663955883543078786250744391360543297546869032850738659646153082758621707370445567914633294266229712124466009283 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 42836d807c098467fd8057abf126f577c8228271 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacert.actalis.it/certs/actalis-autdvg3' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp06.actalis.it/VA/AUTHDV-G3' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novaizolace.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.novaizolace.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.159.1.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.actalis.it/area-download' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl06.actalis.it/Repository/AUTHDV-G3/getLastCRL' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 33f67b5bd8efe6ea5a1d79f77c294056e1d7e669 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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