www.gruppogef.it
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:46:ce:51:33:d3:44:54:f7:32:21:b1:7f:0d:10:a3:69:c7 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.gruppogef.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:46:ce:51:33:d3:44:54:f7:32:21:b1:7f:0d:10:a3:69:c7Serial Number (int): 285430866074064846147694968533369793767879
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5a:40:d1:c2:79:9f:43:f1:28:3e:04:b6:d8:da:32:0b:f5:e8:1e:c2
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d6:8c:1a:9b:43:de:5c:00:12:fa:f1:76:fa:58:76:c0:1e:cd:8d:a3
Fingerprint (sha256): 76:3d:47:46:81:0d:70:b6:26:4c:71:2f:26:45:7d:00:a4:0d:15:31:b8:b1:50:f9:15:47:cf:a1:c5:e8:20:b8
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.gruppogef.it
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.gruppogef.it
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gef-firenze.it
gruppogef.it
www.gef-firenze.it
www.gruppogef.it
gruppogef.it
www.gef-firenze.it
www.gruppogef.it
Other certificates including the domain name gruppogef.it
(limited to 100 certificates)
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
www.gruppogef.it
Certificate
The complete raw certificate details for www.gruppogef.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgISA0bOUTPTRFT3MiGxfw0Qo2nHMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODAzMjgxOTA1NTRaFw0x ODA2MjYxOTA1NTRaMBsxGTAXBgNVBAMTEHd3dy5ncnVwcG9nZWYuaXQwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbijnejqejm5FASWUFcqHSDljwcLrC JJ/E81cWA4/sPJuu/zOCojFmHNQ1IQBL0n3HG9JQ7diemqJjr48Du5AiGqHD3joY IJxsxn2ZsxPOiMVxJLLj5rUGmpRX3lA0AsfL8gvwz34IxnboaASSuZycAl4eoD1g orHYBtJ6Ie81oKWZyaLqPGU25KjiiOaivLKepRhhgeJqV735XVOf2S5m+sdpxbxy teR5yDyRFNgwIWAZd2WMFpNq7to02FLvk3LxcACmW3TctS8F7JUvh8KwxPH/wOZI 9lEG7tfah9xuHKGyByx+vCA/Cmb6+2vAUDY3dmEeiVdbFrSvrlGLTCSfAgMBAAGj ggJCMIICPjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFpA0cJ5n0PxKD4EttjaMgv1 6B7CMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEB BGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZy8wTQYDVR0RBEYwRIIOZ2VmLWZpcmVuemUuaXSCDGdydXBwb2dlZi5pdIIS d3d3LmdlZi1maXJlbnplLml0ghB3d3cuZ3J1cHBvZ2VmLml0MIH+BgNVHSAEgfYw gfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcCARYaaHR0 cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGbVGhpcyBD ZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBh cnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0 ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3Np dG9yeS8wDQYJKoZIhvcNAQELBQADggEBAHct/mb4oip171+V6xkCzroMKfi6UzvI 1Ei4A43oXJZSEL2AbS282CVh0MZmI1BU/RKe6sRQuIAe+tRRnexdO4DOEd+pV41K Qn4xEJbTrAvGno+bUr0RtdvJJLiteuShqN2G1VlZm9Ph4Zm2Z5huZyUSyr9LDBxI /l/q5SE1x74Y78qABLnOdCm9Lyx9viZF+PoIx8BLruHGXzdDzXOivn17QTNtG1AW HHMv52prhc0QMzQPryZXmZ6O35m800MRTbb+sy5vqYcS7Y4k3P70PMwVkIQ0v4QV DK85OCCu8u2hMt9DipnfJ5QQeoHaW3eg027x5p1KTey2Q+mVSnNjF3A= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm4o53o6no5uRQEllBXKh 0g5Y8HC6wiSfxPNXFgOP7Dybrv8zgqIxZhzUNSEAS9J9xxvSUO3YnpqiY6+PA7uQ Ihqhw946GCCcbMZ9mbMTzojFcSSy4+a1BpqUV95QNALHy/IL8M9+CMZ26GgEkrmc nAJeHqA9YKKx2AbSeiHvNaClmcmi6jxlNuSo4ojmoryynqUYYYHiale9+V1Tn9ku ZvrHacW8crXkecg8kRTYMCFgGXdljBaTau7aNNhS75Ny8XAAplt03LUvBeyVL4fC sMTx/8DmSPZRBu7X2ofcbhyhsgcsfrwgPwpm+vtrwFA2N3ZhHolXWxa0r65Ri0wk nwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 285430866074064846147694968533369793767879 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-28 19:05:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-26 19:05:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.gruppogef.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19635099076506238164054078904237325368964217838659585317986975862945543377707748518560944189255248706769881285420832068329030260027744706216486993365923310062194151687342376672216147368193359113500059156339613169650880714575130065548301220793735411371329931106763429281283614050951868175502869958317045562872801472822735249314188160553219683499987077144931718929481941022818292120767091614739501209499938273332453249154477254381353153364128587829390135343295532812514224065342342237693460210307162602348177332160169816449682759114720461949161393036520499589582497996790321317800384037616604340451865101043231131182239 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5a40d1c2799f43f1283e04b6d8da320bf5e81ec2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (70 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gef-firenze.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gruppogef.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gef-firenze.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gruppogef.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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