centro-ricerche.com
Issued by R3
About this certificate
This digital certificate with serial number 04:22:a5:8a:4e:a5:b8:7a:db:9d:ac:00:ce:ab:18:d1:68:15 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=centro-ricerche.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:22:a5:8a:4e:a5:b8:7a:db:9d:ac:00:ce:ab:18:d1:68:15Serial Number (int): 360238784953781572937040021985908959045653
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b6:97:00:90:59:72:90:df:e9:06:8b:71:15:ab:7a:3c:63:5a:39:94
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d9:c2:c4:58:e1:93:42:8d:ba:4d:5e:c3:75:0c:64:ae:4f:a4:3d:83
Fingerprint (sha256): 6c:50:9d:82:d0:15:f2:7f:41:32:80:de:85:4e:b5:01:78:c3:f1:fe:db:c4:81:95:2d:89:81:6d:e0:e7:b3:5d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate centro-ricerche.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for centro-ricerche.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
centro-ricerche.com
Other certificates including the domain name centro-ricerche.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for centro-ricerche.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8zCCBNugAwIBAgISBCKlik6luHrbnawAzqsY0WgVMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjgxNTM5MzlaFw0yNDA2MjYxNTM5MzhaMB4xHDAaBgNVBAMT E2NlbnRyby1yaWNlcmNoZS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK AoICAQDUPrbjSu41UmPXV600Xu3yoVb6IbZ8WTNPWierKkyzC9yqfJ4JnpXnwyGw JOEsGFfjxST3iaCFpfhCY7QC6B1cTZGSm/gT1fOTHWtQ3/78DCb7tqd+8di9/oad MxoyApq2nY0AzY840Yar+wl3dsKxJCdliLfakuNxN4mQLQhteAh30hUnVQqP6QwG 5OPiMPh16VAHky1D5KBzuPWvb3RSSw2x0Uhs9ra2jG+MlDy+S6ouJZvMFb8ImLNM i3zOOVovvbRdn716Ja/aYZ9DLBwdFqjijUFMVCZkZz/7JxTU/o1p8e726mXGtakb IwZ9jcAhu0fFmA+foUJBiuTHN4MdrAS+QzJQVtabRqBPi8VTIPZdP3HcZ7IOm7/B 31voOMGBh14irSyUEMbiucTPoEi1gvHBFFaMzkaCtGQ7NYPPEL9J2qaGnNoPsrCm OZKAN/TFttUn6vPdGyoUHxfizKl6E+3RHI2Bj/VovR4ul2IK+/bx0gchwtQinxcy BhFetk7B47zOm2FNRj02OKqLskhhpLJJm2s/Q03nI/MV9zrWTrMcvyis4e8111Eq cC0cHieKRJ81XwhH6nmuXbJ+G+fyKHIxmy5ReZIabgz7M57k6/p4RH6y0zSLCTdG sm5s5MFq03J6wLKB8k1SmnQSst/inM8jHlw0hBidKTQvkI39AwIDAQABo4ICFTCC AhEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS2lwCQWXKQ3+kGi3EVq3o8Y1o5lDAf BgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcw IQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYW aHR0cDovL3IzLmkubGVuY3Iub3JnLzAeBgNVHREEFzAVghNjZW50cm8tcmljZXJj aGUuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB 8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGOhe5u5wAA BAMARzBFAiA6iGpdd6MzN4UlPejcUYiCN/iyQffGRcTqY1crniTZIgIhAPx0auph guwIFgFs7T3oJ5uZ6/IYnHI2P1PSHfEdniuiAHYAouK/1h7eLy8HoNZObTen3GVD sMa1LqLat4r4mm31F9gAAAGOhe5u4QAABAMARzBFAiEA4UeDH5JzezDIlYauLiwZ Ry+kxuHFK1norPF7rtki3+wCIFlRMko094MEKzPtJewneRI/0AgVPVCqOqmaNr2j rWkMMA0GCSqGSIb3DQEBCwUAA4IBAQCASWUXeBaMpVa1lE0lke2BHBAq4/prjCK/ Xb0PR3BK47+YvxVUFJ+AxXXh4ySmfVyadU+r6eABE3ErRm2ZYgxwQSbcNwLYHA/I O8UP0VQ2LLQ8ZUc8vW8oIyQwRX8DJzj9RtaMqD/YhIj5stexGeigld6TdsV10bol Yqc5Zc802MmPluoVqN7A/ahjgUF5vY4AMnFkjirQ5a3pE5tcgVs+gvX6CqvKDnsb XE+MG5Dkr7mLRQQcOLkKSRsLlOQuPaDi/y7cBqHXSyrU5CkNyGIZKGfFZ/ZXY3aQ HlqsIi1nOH0ao6XzMmL9ohCimZZojzsdnuJdEs5aPq3PF8w8D+BG -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1D6240ruNVJj11etNF7t 8qFW+iG2fFkzT1onqypMswvcqnyeCZ6V58MhsCThLBhX48Uk94mghaX4QmO0Augd XE2Rkpv4E9Xzkx1rUN/+/Awm+7anfvHYvf6GnTMaMgKatp2NAM2PONGGq/sJd3bC sSQnZYi32pLjcTeJkC0IbXgId9IVJ1UKj+kMBuTj4jD4delQB5MtQ+Sgc7j1r290 UksNsdFIbPa2toxvjJQ8vkuqLiWbzBW/CJizTIt8zjlaL720XZ+9eiWv2mGfQywc HRao4o1BTFQmZGc/+ycU1P6NafHu9uplxrWpGyMGfY3AIbtHxZgPn6FCQYrkxzeD HawEvkMyUFbWm0agT4vFUyD2XT9x3GeyDpu/wd9b6DjBgYdeIq0slBDG4rnEz6BI tYLxwRRWjM5GgrRkOzWDzxC/SdqmhpzaD7KwpjmSgDf0xbbVJ+rz3RsqFB8X4syp ehPt0RyNgY/1aL0eLpdiCvv28dIHIcLUIp8XMgYRXrZOweO8zpthTUY9Njiqi7JI YaSySZtrP0NN5yPzFfc61k6zHL8orOHvNddRKnAtHB4nikSfNV8IR+p5rl2yfhvn 8ihyMZsuUXmSGm4M+zOe5Ov6eER+stM0iwk3RrJubOTBatNyesCygfJNUpp0ErLf 4pzPIx5cNIQYnSk0L5CN/QMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 360238784953781572937040021985908959045653 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-28 15:39:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-26 15:39:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'centro-ricerche.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 865883966065734133729405426659539331394116557743692918876728233837574952072968339987523812101139473113354294280080606864576987227985864207537816703209685883647479349400859342729049330552507667168109548643925805754701781625612673646517095417367711265559156122408677957626142141365678232213740457793387054059998560314157937701636206524137278983330327510313818370903169881075559208797445124543186391892841242921473839485836381142148464660473185141349369565562794073802060619538623952383802693576157802859206117919751200825526445472204013311029031833565368960235803134166118786949393897832355523035457461890195124867956837202164273117706776513144620736868559078702272743499687367825171283528990432649865541332294669089572151150217715177467537074074896268177692404439046428271169656356562647387896306938691089038558309593997260151688569729757804785584420986267377882770881792131566357430460068904748541921735934787254667976203569437307415356137846051603932161255278096534573388950683334801766074477748004444232636844332008498664834817864533398925474839084738835380677730592022683879917036814763297241065206277473093453611906225861655320394522036366870319758250299784002404354974108156649223540438168775769473592999210293608926918323600643 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b6970090597290dfe9068b7115ab7a3c635a3994 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'centro-ricerche.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e85ee6ee7000004030047304502203a886a5d77a3333785253de8dc51888237f8b241f7c645c4ea63572b9e24d922022100fc746aea6182ec0816016ced3de8279b99ebf2189c72363f53d21df11d9e2ba2007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e85ee6ee10000040300473045022100e147831f92737b30c89586ae2e2c19472fa4c6e1c52b59e8acf17baed922dfec02205951324a34f783042b33ed25ec2779123fd008153d50aa3aa99a36bda3ad690c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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