www.compass.it

- Compass -

Issued by Entrust Certification Authority - L1K

About this certificate

This digital certificate with serial number 22:e0:ec:da:24:b7:aa:6d:00:00:00:00:50:da:f1:d4 was issued on by Entrust, Inc..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Compass

Organization: Compass
Locality: Milano
Country: IT

Entrust, Inc.

Organization: Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 22:e0:ec:da:24:b7:aa:6d:00:00:00:00:50:da:f1:d4
Serial Number (int): 46361630284768329562921009659609018836
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId: b8:e7:74:1e:3b:6d:96:0d:90:34:5a:43:81:83:79:9d:63:b2:4b:14
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf

Fingerprint (sha1): 09:f8:8b:88:af:0a:74:0f:c7:46:63:4f:db:70:53:0b:ab:4e:26:a3
Fingerprint (sha256): 75:0c:28:f1:dc:cc:80:cd:83:e3:d9:91:73:60:50:a0:3c:f2:08:93:80:dd:a2:f8:60:09:d2:18:1d:48:14:35

Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer

Revocation information

OCSP Server: http://ocsp.entrust.net
CRL Distribution Point: http://crl.entrust.net/level1k.crl

Check the revocation status for certificate www.compass.it

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.compass.it

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.compass.it
compass.it

Other certificates including the domain name compass.it

(limited to 100 certificates)
passcom.compassonline.it
wmbldi.compass.it
ds-richiesta.compass.it
richiesta.compass.it
m.compass.it
assicurazioni.compass.it
fidoposbancoposta.compass.it
cometa.compass.it
www.compass.it
mailsync.compass.it
lmm.compass.it
wmbldi.compass.it
www.compass.it
compasspay.compass.it
*.compass.it
passcom.compassonline.it
prestiti.compass.it
secure.compass.it
fidoposbancoposta.compass.it
cmiep.compass.it
compasspay.compass.it
www.compass.it
fidoposbancoposta.compass.it
www.compass.it
uploaddocumenti.compass.it
pdaH3G.compass.it
assicurazioni.compass.it
loginpage-ext.compass.it
richiesta.compass.it
www.compass.it
vodafone.compass.it
ariadipremi.compass.it
www.compass.it
richiesta.compass.it
fidoposbancoposta.compass.it
20annicarte.compass.it
www.compass.it
sviluppo.assicurazioni.compass.it
prestiti.compass.it
richiesta.compass.it
compasspay.compass.it
cartabancopostapiu.compass.it
ariadipremi.compass.it
ds-richiesta.compass.it
loginpage.compass.it
cartabancopostapiu.compass.it
promoepremi.compass.it
pdaH3G.compass.it
eap01.mediobanca.com
sviluppo.assicurazioni.compass.it
assicurazioni.compass.it
compasspay.compass.it
pdaH3G.compass.it
www.compass.it
pdaH3G.compass.it
compasspay.compass.it
fidoposbancoposta.compass.it
sviluppo.assicurazioni.compass.it
assicurazioni.compass.it
www.compass.it
welcome.compass.it
sviluppo.assicurazioni.compass.it
bol.compass.it

Certificate

The complete raw certificate details for www.compass.it in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyvE0CXftm/KiAlcWnKZa
JIVbbrbD51sK+KotXUGND/J4kLT84c4M5ne+Yh8iTKFjF0AJMzHyQBU4Hp5HLHMM
vfBanzrfxz8NzN+2h7YtqVcxWMVCyXKmy+EayxBmuR2QoIOWygD5uinKjGCJ/JXn
K5JnqMPcV7/M+OyDwqVO4vZAqNaIrIe7FRXNhB3ZrcpCf9qyjRJLcfxe9pBeEIMt
KaQAyDKQZmNRGOl3b7m8nh6WZ//lElUY/pqQyL4GnAwc+yYSc+8E3SmUORIlKybR
7ekk5ESrQvlDr4lwfA2uwFI0iZ9CTkjJsKDadUV2aQmfe18zKSURPfMGEgj3PP5D
jmf/ueeE3lpuIqWrgWl3IWEGI65wgb/3ZR0Foa7BLK0fOuwUAaRkDrebcfaf3GKE
NP1wS3VJfy4HUfAFvySbxicWOsbKFTmM9Tvyzh1Ky1JUJqCEOtAzKqlNWsw5Z8/6
tr04kYBIhrTh2Z+G8dsBN9HWeSr/nxfFlkA43PJZsHj6HkyQhWnvMqHC/B4VZ8ze
kNr1/p3mHJNocv3CpOTD7amLL9MhXJqru/D1itF24sQ6G9LREz5Cf8YVvGwGAG3C
NfHTNsNs11wQT8GkZUuUBM5xlofn2JjECQLw15kHaQyp0a10ufnQsmfjQY2SuQqm
WRGBwVs+b2HyW6+ya6PIrzcCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 46361630284768329562921009659609018836
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-01-02 13:45:32 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-02 14:15:29 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Milano'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Compass'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.compass.it'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 827931943488153310664675041848092906748557409633386067414597147191976334876675549395101827273962294155143589460253904128260708321907017285045408901952799535277290767222091837624756200235713168681345185603335489130434059239138949896029699119887509485946887301314603127517878147331056557024167631450015494968778399874664989233893460906257638441513818691070339126825454988175304616056374198016840223199714145437224698485735249479632445183008712165330075755022690735837748154505996274275446766057698850603362633164718823452161755236319739502737862919079965928096247141487371835109343755033879694106445010687550974055048488335171665968406194204862630293108467036305977993244922862413450960639260759830717277289518943383568694757510678080471822685953564277523111977579676735179445379214114011291943604700804773244584992588760138251159157132907727449550792382061714197729496649809430916699789360210249830650723109524690534076562799205483719379399992162598453748015920195695323899469064039607585086042511821871759651127053163163944921332640824993850425099611829483596124745428940753321805511416459302529605281724048059983059252275733082059846081294056937296412971547994026824879655264391615244691333999309353233822788913045732455431134555959
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.compass.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'compass.it'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							b8e7741e3b6d960d90345a438183799d63b24b14
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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