pointersoft.it
Issued by R3
About this certificate
This digital certificate with serial number 03:fc:f1:4e:ee:4b:9b:47:7f:de:59:0b:de:2c:f0:2a:8d:af was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pointersoft.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fc:f1:4e:ee:4b:9b:47:7f:de:59:0b:de:2c:f0:2a:8d:afSerial Number (int): 347408768038700017646331966779117336694191
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 30:9f:2c:bd:06:2d:65:e4:a7:66:f5:c8:43:fb:9d:fb:26:b3:0c:92
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d2:23:b1:15:1c:9b:09:f2:44:f5:a0:ca:7b:81:c7:25:72:95:f1:f2
Fingerprint (sha256): a2:5b:71:c5:dd:83:48:ed:aa:3a:eb:6d:9c:e0:f8:db:b3:78:02:ea:1b:0f:55:bb:cf:47:10:49:50:71:f4:46
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate pointersoft.it
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pointersoft.it
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pointersoft.com
pointersoft.it
www.pointersoft.com
www.pointersoft.it
pointersoft.it
www.pointersoft.com
www.pointersoft.it
Other certificates including the domain name pointersoft.it
(limited to 100 certificates)
zzeta.pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
www.pointersoft.it
howto.pointersoft.it
pointersoft.it
www.pointersoft.it
www.pointersoft.it
pointersoft.it
zzeta.pointersoft.it
www.pointersoft.it
zzeta.pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
zzeta.pointersoft.it
pointersoft.it
www.pointersoft.it
zzeta.pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
www.pointersoft.it
howto.pointersoft.it
pointersoft.it
www.pointersoft.it
www.pointersoft.it
pointersoft.it
zzeta.pointersoft.it
www.pointersoft.it
zzeta.pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
zzeta.pointersoft.it
pointersoft.it
www.pointersoft.it
zzeta.pointersoft.it
pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
www.pointersoft.it
pointersoft.it
pointersoft.it
www.pointersoft.it
Certificate
The complete raw certificate details for pointersoft.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgISA/zxTu5Lm0d/3lkL3izwKo2vMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjYwNjA2MzRaFw0yMzEyMjUwNjA2MzNaMBkxFzAVBgNVBAMT DnBvaW50ZXJzb2Z0Lml0MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEA m3NVTNTR7N7FStWcbBgyBlk96P96yaQqgpZwnYozwhMNFvrGwa89U+0U2JlD84tq 87X0nBakxvjhY/hdOt0gXzrrvZ4JYi96tm+Vi9YS3qqHwUkAof5dYkiRVZ7NRCPx KDM2myB6THMnS2TeiE8oRMKwyxuVAVY+BIEXmGgx+38jwhKcBbVznKoQODVJLAfd CgSiZF6Uyw3iIMxO+eEPL3pQ5KsuADgD0ApO4IMOmRLOOSbCDvZJJzYqE7f7RVuX 8t5LBdZyKW+xRukBBPA09rXc3haZ5TjjugkfWoSILM9QMF7naQjilbe/z7L89H7h tVlKMFHhoWWmm9RsF8s8ZEbJ27Uzku4zNWJBJ+kCC79Q6N10Y5hvRvW3KkZCrQ1X r+1dkijnJTjlP8CDmM4f3JWyHeLcBr1bOTg6zkSnaTzelAcL4tQcW3js+n4jeJoB kex4uLd5l86vLQ2yRp+qc1RezCa2G7MlvTcNij0fQIYySEC3OqIHwMH3owtwpelh AgMBAAGjggJLMIICRzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFDCfLL0GLWXkp2b1 yEP7nfsmswySMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsG AQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIG CCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMFMGA1UdEQRMMEqCD3Bv aW50ZXJzb2Z0LmNvbYIOcG9pbnRlcnNvZnQuaXSCE3d3dy5wb2ludGVyc29mdC5j b22CEnd3dy5wb2ludGVyc29mdC5pdDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUG CisGAQQB1nkCBAIEgfYEgfMA8QB3AHoyjFTYty22IOo44FIe6YQWcDIThU070ivB OlejUutSAAABitBPodwAAAQDAEgwRgIhANLlvefQeS+sNMfNoG4I9Tx0L7AqniS1 MJ312Gu/bgylAiEAraOA8jFwTSiVryp4Hy1oLyOVy7dFQ2S+vnVLfcggyggAdgCt 9776fP8QyIudPZwePhhqtGcpXc+xDCTKhYY069yCigAAAYrQT6IDAAAEAwBHMEUC ICecwmOm7Ho8cbTpAPpZ/Z3MVbcJfGTHol2KOrPENywTAiEAxXvXmpb9lXPUguqt LEVkNYZ3v4pqz9notvFdvfn4gzEwDQYJKoZIhvcNAQELBQADggEBAJpZXJ6nEdBR Ym1M1kG3i3v69bhaUfU3WE23YZnbJDKrbgPHZXWbEam+zPSRncsGTqxKSsrKATek 7/8XKl0oDuzXIGdwtO8TrzHz3utgj9cL60B8GuzLYPFDFqPQAO1SoSatXAL4K0D0 UmNYxvalHlni5sKN207riOoZn+EZOK21KOum0wT/A3srJrgiSzw7BYefI4rIbtH1 dg7q5Ojka9QCiNv0ay/T8ApErG3XGTCRcuCGT5m3qSMN+LKrJO7g3hVOk/J2yVHa HqifLQRPWLfU5DQ4BvNmvwcGmvUrX1jbPbmvGU2UU/2695qZxrULWOpHOsbe6NcN IgWuSnC4Lyc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAm3NVTNTR7N7FStWcbBgy Blk96P96yaQqgpZwnYozwhMNFvrGwa89U+0U2JlD84tq87X0nBakxvjhY/hdOt0g XzrrvZ4JYi96tm+Vi9YS3qqHwUkAof5dYkiRVZ7NRCPxKDM2myB6THMnS2TeiE8o RMKwyxuVAVY+BIEXmGgx+38jwhKcBbVznKoQODVJLAfdCgSiZF6Uyw3iIMxO+eEP L3pQ5KsuADgD0ApO4IMOmRLOOSbCDvZJJzYqE7f7RVuX8t5LBdZyKW+xRukBBPA0 9rXc3haZ5TjjugkfWoSILM9QMF7naQjilbe/z7L89H7htVlKMFHhoWWmm9RsF8s8 ZEbJ27Uzku4zNWJBJ+kCC79Q6N10Y5hvRvW3KkZCrQ1Xr+1dkijnJTjlP8CDmM4f 3JWyHeLcBr1bOTg6zkSnaTzelAcL4tQcW3js+n4jeJoBkex4uLd5l86vLQ2yRp+q c1RezCa2G7MlvTcNij0fQIYySEC3OqIHwMH3owtwpelhAgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 347408768038700017646331966779117336694191 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-26 06:06:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-25 06:06:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pointersoft.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 3527758886221272672338565208219016765963523411970990971351650545448145164255864332425983344079246643660335463859362827937740274338307365662787390333348951977554847912679409309606920508513109575240354887424047963725483469873944057321755320460357846115220267137182141960070015063735445975939240991873256562933582870420139765927736147094536078904059593133164338245373922895838346452851423939514589117305889063357499350110891197119202731461076706026489916057300300913177016545586873215632961533210702555017964633226408788838956557491388289044713591880247393637109400985294823300539599681490906436704927486496752785607541916753680828402755857488179147517533813290847315574646442441704602349148141803237697325994202533455525305760970481695548171336894483546055139735905937741291461774464349859637379808091740155276808327633501872008151827701731144627876066247286402526647029569018693101988614364951042365192108268512453895154690401 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 309f2cbd062d65e4a766f5c843fb9dfb26b30c92 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (76 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pointersoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pointersoft.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pointersoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pointersoft.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018ad04fa1dc0000040300483046022100d2e5bde7d0792fac34c7cda06e08f53c742fb02a9e24b5309df5d86bbf6e0ca5022100ada380f231704d2895af2a781f2d682f2395cbb7454364bebe754b7dc820ca08007600adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000018ad04fa20300000403004730450220279cc263a6ec7a3c71b4e900fa59fd9dcc55b7097c64c7a25d8a3ab3c4372c13022100c57bd79a96fd9573d482eaad2c4564358677bf8a6acfd9e8b6f15dbdf9f88331 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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