curaseptspa.it

Issued by R3

About this certificate

This digital certificate with serial number 04:a0:f0:5e:6e:48:40:d5:bc:0f:93:63:96:e0:7a:53:bd:b9 was issued on by Let's Encrypt.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=curaseptspa.it

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:a0:f0:5e:6e:48:40:d5:bc:0f:93:63:96:e0:7a:53:bd:b9
Serial Number (int): 403213827466073772356560674140517278399929
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: bb:52:05:3b:17:38:0c:a2:87:61:0c:33:5c:2f:06:1b:57:b5:8a:13
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 4e:1c:27:69:cc:90:32:ca:c7:4f:ce:9f:c1:35:7b:7c:5b:ae:cf:e0
Fingerprint (sha256): 7b:4c:75:1c:a7:07:68:cc:8e:cd:76:66:e3:b5:27:e8:c9:4d:44:c1:16:e4:43:30:93:df:91:eb:cc:04:0e:a7

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate curaseptspa.it

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for curaseptspa.it

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

curaseptspa.it
curasf.site.tb-hosting.com
www.curaseptspa.it

Other certificates including the domain name curaseptspa.it

(limited to 100 certificates)
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
*.curaseptspa.it
curaseptspa.it
curaseptspa.it
*.curaseptspa.it
*.curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
mail.curaden.it
curaseptspa.it
curaseptspa.it
curaseptspa.it

Certificate

The complete raw certificate details for curaseptspa.it in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGGTCCBQGgAwIBAgISBKDwXm5IQNW8D5NjluB6U725MA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMzExMDUxNTIxNDBaFw0yNDAyMDMxNTIxMzlaMBkxFzAVBgNVBAMT
DmN1cmFzZXB0c3BhLml0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA
yQOntaoWgCIG8QsTqtWOLozZ6908Qi4VYkiXQ/d+uBV67puW/sUhDwDgGYUI6P/a
EGQYkNZ39LYj6yNlTyjygIYPiwVZiN+rSN8EotHVNUFjhmce9cDdlB0UH64C1L0J
5yrH4KEfHmMfsTEpW8zuwW+43LcSLwxbfebPoGChiEAgP+ljPKyzE2BQhokLjGF+
rGYx3KP2xqaIV4SeIztoZGC4YD9MyExc4czESUh1yoTYWtf3Be+7mr2vS19M4Ek0
V6DPooMIJsFDx/w9mp0XAP1nV5bOKDyFq+zisz4bs/jr3Uk+nCMFjgyUmwYTroqi
E1pyAK3ikM0yWGgENtg/Uy8AFKsvNdbFH6tItcSqzULoKE8w1xRluB20fBwJWsh2
EQAwwcxQVUpieZXl18HmQEHWBTa5vma4e9ismEpdJPT6pLm6COtR+jmyH1EbBbr3
lPWg3NMnS2LB9DxA+l57yPobl3durj3PZotYVKDvToZgFLtQc1N1mo0pyPxWIJM5
1JNpbubJWzQQcAr9C027gfM0vqqwwqvssbrc4DT9CP9F19CNu73XWQzTG18dW35s
1yFbquZtXUo4VVu3niIKqDqseqoRNb8lhdYXpWddCCPvlHHRWimcC11FcPgzXjqD
cRZYnYbbJ0EwOqgffBY8JrY8Dxvlc4CIyhzo94UC1hkCAwEAAaOCAkAwggI8MA4G
A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD
VR0TAQH/BAIwADAdBgNVHQ4EFgQUu1IFOxc4DKKHYQwzXC8GG1e1ihMwHwYDVR0j
BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG
AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6
Ly9yMy5pLmxlbmNyLm9yZy8wSQYDVR0RBEIwQIIOY3VyYXNlcHRzcGEuaXSCGmN1
cmFzZi5zaXRlLnRiLWhvc3RpbmcuY29tghJ3d3cuY3VyYXNlcHRzcGEuaXQwEwYD
VR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgA7U3d1
Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYugSji7AAAEAwBHMEUCIQDx
VspH9b5Pwdr8aLhISQfiNAzLpN7EgpZlhd9gILUx/QIgI26EQQEly5Y+rqVeXrAX
i5Yyu+zFs0eL6KSuIv9dsVQAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+Zn
TFo6dAAAAYugSjj5AAAEAwBHMEUCIQCsUt0JUSPwOZuV4N72vy9ei94hhIdbPaAG
v89HahSR7QIgIykfScYj2OufdQabFOyJny289C2PJTUMfhs+aTfBTpEwDQYJKoZI
hvcNAQELBQADggEBAB73hk3/58OVoxrB0HF2MGhw1nuoORTgcXOknJMCIkNLlN4G
YP/UQT4v/H65RmvMDpjfrTBOYa79m4Zu8rCejj/D+Wa02mHX/q+kY2SLhYruza8r
qZiRtRbYGM89EWttAbjc9QhBe55bst2sww8EtQmcfB8uRKVVfDJ8k8kSiu4vkc0H
ZOnHvG6gMLa9GOjneS22KHUuG7/SDZTOwDa6yj35heALF7lYLmSchhSBG1WNwLpP
kQL1xmrBR/RO0t0SeYe8bzQCCnrhr2rOa434a5crYzjqiknS4jwiCSWyTBT1DpVw
haooWc83zaul+TnEcj2FVsMT/y5mANS4ITMLlj0=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 403213827466073772356560674140517278399929
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-05 15:21:40 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-03 15:21:39 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'curaseptspa.it'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 820066705997049916595378087567957713345021759427305900403668772026332478208900230636924396110442464393223755051667641689434380653006095529627392778272688570886797497524299258297185848033287073761824449689306837282902467811058869795657045771064331153819023679344446216684985517299837914086935297193604099099915482794205703203818906600219958781743652047412240147242743250990745939077448253126061185612609361546090112301701653367384141735034075229929632521052172819812884256403941764433069945726047213783687918839556492795667058456530521667230365153641891812046895697605243429419071973885423877082335553746356140543975553152317047688940701007544535126200209332413469845646765812097768116821102980613317454208835831851488465413366651177123029150096799257672956302258798187631788034331155976569271146058719857974359178936782292412911099383469187166586339743681309437514269954532850076092221644489311032980740921945640911611939975403156711710969083597877206226976119112630759647824024369931578342178046511135711340912095753795997721921766671320530787944486167675769511217364771812411255710913751310658579526210971658851678825281820126373292838570453084763493156038671790061640572919327183500529881657100848382889295885765901215049321731609
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							bb52053b17380ca287610c335c2f061b57b58a13
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'curaseptspa.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'curasf.site.tb-hosting.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.curaseptspa.it'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ba04a38bb0000040300473045022100f156ca47f5be4fc1dafc68b8484907e2340ccba4dec482966585df6020b531fd0220236e84410125cb963eaea55e5eb0178b9632bbecc5b3478be8a4ae22ff5db15400760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ba04a38f90000040300473045022100ac52dd095123f0399b95e0def6bf2f5e8bde2184875b3da006bfcf476a1491ed022023291f49c623d8eb9f75069b14ec899f2dbcf42d8f25350c7e1b3e6937c14e91
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		001ef7864dffe7c395a31ac1d07176306870d67ba83914e07173a49c930222434b94de0660ffd4413e2ffc7eb9466bcc0e98dfad304e61aefd9b866ef2b09e8e3fc3f966b4da61d7feafa463648b858aeecdaf2ba99891b516d818cf3d116b6d01b8dcf508417b9e5bb2ddacc30f04b5099c7c1f2e44a5557c327c93c9128aee2f91cd0764e9c7bc6ea030b6bd18e8e7792db628752e1bbfd20d94cec036baca3df985e00b17b9582e649c8614811b558dc0ba4f9102f5c66ac147f44ed2dd127987bc6f34020a7ae1af6ace6b8df86b972b6338ea8a49d2e23c220925b24c14f50e957085aa2859cf37cdaba5f939c4723d8556c313ff2e6600d4b821330b963d