buonviaggio.com

Issued by R3

About this certificate

This digital certificate with serial number 04:09:a1:64:38:32:03:2e:9f:d1:c1:a4:9f:d3:0a:da:a4:54 was issued on by Let's Encrypt.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=buonviaggio.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:09:a1:64:38:32:03:2e:9f:d1:c1:a4:9f:d3:0a:da:a4:54
Serial Number (int): 351726211106113988446515856133179255202900
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 0f:e3:9a:06:bc:fb:60:b6:bd:29:54:c6:6b:23:0c:05:fe:41:1a:94
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 6d:b3:a0:1a:3f:9f:dc:42:46:be:00:3e:ad:41:f9:f9:dc:56:1d:1a
Fingerprint (sha256): a4:17:cc:cf:b8:ef:3b:9e:82:7f:e1:37:ce:9d:1f:e2:b1:66:0d:5b:5d:76:da:69:91:33:c3:8d:8a:f6:4a:59

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate buonviaggio.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for buonviaggio.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

buonviaggio.com

Other certificates including the domain name buonviaggio.com

(limited to 100 certificates)
mechstrom.com
provvedimento.com
organicandvegan.com
818leaf.com
vivandiere.com
smorzando.com
rltconsulting.com
bleggiosuperiore.com
zavion.org
burgeris.com
provvedimento.com
buonviaggio.com
buonviaggio.com
www.buonviaggio.com
buonviaggio.com
microfilmingservices.com
www.flaxcasino.com
www.diedre.boston
www.socialtattoo.com
www.stemcelltexas.org

Certificate

The complete raw certificate details for buonviaggio.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 351726211106113988446515856133179255202900
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-04 14:38:54 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-03 14:38:53 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'buonviaggio.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 774430387830676665292884614083124340282046225983480563572590426470592910485295680832973213332161403293347787465743493552174797167115196776862003141568579573952897643440432363264124220909204355894975540837659289267033700545841291092236804932716351488438140380958666590156559293051403192457550526262903356122715858154762238279954485529520399696362378144473644170265791411377593383090223846541217738210442527250937418881034861253269416924015302955185122555064350255019018578724841671787822979740201121686419606669248134005083933486007508794218222760461937811711103779846440265929625613513288820490242361540656902421901418078643621301647101280652276931855816003751933093001100098303369755916396998973063642632142224430608503385525814536258953841041457183723695799752599653125892260775523464366504188886678629923992503480163580769312341514403465371923650964066736992530416993430328192459301036567762816013518097551249300937776229936576892875815658118903641436446992732048272831833687084504678498764993097070736557292301255772950378919315244411146263049537465460270010852565698393044413689906538341724808753561034982641451776379704332881288130057434505718090876705314949840679662021027409385553434486399385471213922360617020117742644423047
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							0fe39a06bcfb60b6bd2954c66b230c05fe411a94
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'buonviaggio.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ea9c355fc000004030046304402203ded6e9a41fbcb68c6885426b52f2d9e850a8ee4a9fc9a98621bbb4eea4788fa022019a1cedbc4b6b51d6fb5c5cec4b919193b664040eb5e45852bf76dc5db6b501100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ea9c359ad000004030048304602210085ed036a63c452e230109bffc59d16eede21af317e406aa6e0c8465c7bb3217102210092d7d3580725de05dc86c201eb3b775de860a0aa5632ef54643f695287ca970f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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