buonviaggio.com
Issued by R3
About this certificate
This digital certificate with serial number 04:09:a1:64:38:32:03:2e:9f:d1:c1:a4:9f:d3:0a:da:a4:54 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=buonviaggio.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:09:a1:64:38:32:03:2e:9f:d1:c1:a4:9f:d3:0a:da:a4:54Serial Number (int): 351726211106113988446515856133179255202900
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 0f:e3:9a:06:bc:fb:60:b6:bd:29:54:c6:6b:23:0c:05:fe:41:1a:94
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 6d:b3:a0:1a:3f:9f:dc:42:46:be:00:3e:ad:41:f9:f9:dc:56:1d:1a
Fingerprint (sha256): a4:17:cc:cf:b8:ef:3b:9e:82:7f:e1:37:ce:9d:1f:e2:b1:66:0d:5b:5d:76:da:69:91:33:c3:8d:8a:f6:4a:59
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate buonviaggio.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for buonviaggio.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
buonviaggio.com
Other certificates including the domain name buonviaggio.com
(limited to 100 certificates)
mechstrom.com
provvedimento.com
organicandvegan.com
818leaf.com
vivandiere.com
smorzando.com
rltconsulting.com
bleggiosuperiore.com
zavion.org
burgeris.com
provvedimento.com
buonviaggio.com
buonviaggio.com
www.buonviaggio.com
buonviaggio.com
microfilmingservices.com
www.flaxcasino.com
www.diedre.boston
www.socialtattoo.com
www.stemcelltexas.org
provvedimento.com
organicandvegan.com
818leaf.com
vivandiere.com
smorzando.com
rltconsulting.com
bleggiosuperiore.com
zavion.org
burgeris.com
provvedimento.com
buonviaggio.com
buonviaggio.com
www.buonviaggio.com
buonviaggio.com
microfilmingservices.com
www.flaxcasino.com
www.diedre.boston
www.socialtattoo.com
www.stemcelltexas.org
Certificate
The complete raw certificate details for buonviaggio.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6zCCBNOgAwIBAgISBAmhZDgyAy6f0cGkn9MK2qRUMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDQxNDM4NTRaFw0yNDA3MDMxNDM4NTNaMBoxGDAWBgNVBAMT D2J1b252aWFnZ2lvLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AL3T8zVoCxXAbWqVZYinbX0m3JJ6rbQ5SNQJjm4wYRGFUWAyaQlvvwiAtKaNmOX+ F9yOs6HKowbmfomb6j7/yd8Q76KtJphv0ACXaCir4RoP1KND2FIEITyY6wFFq3LF 1ypimKITQal6ot1wjTQDCN81WviM5Ee644eCGGiFLqhQ+UenFpRiMDyii5TcwVft 2ffdZKr9ZnabmsrawWaKACQa539qAlFNdXjSDSzGblcf/GjzTv+rwhCHDfmguShv lFbZZEVtSteWpUWQfjrgRkh+HsL2OMQcgrWNuxQJpRZXS055svq3lZetSJ6cp8rG S3YkJWTPTdHZ/u2P16U8tjh/PNkWEPZ2CsSdhQt51/ZFXnRNUncbpitODKeRO3c7 zGz7MrUPtpdIkO5o6pFF5U5MW6/I+t8Wd/raIxmcys3PI3JoT1t/+FsmbbHBSTpB Zp1lrCO1Hnv1eN8DsrECtzNGbduiZVZd/Ph58b4JJX4Iv6tjORYWjVHp2Q6OgBgQ JxKiuTGv62rnWv7DP8XfGM3sQebaeqSvVScycXiLOAyjZRtFgtMY/ArC6ep7GSCi dzrcu5Wro0uJzbMDv2pK35doKmMGsz1xG5gnH6f/CZ7taDeG7oCNSG3IH5VAlWQt R1XteUCZLXoRCt3b2ZFjL8XvDSo6+rIIlFNI3bMbBOmHAgMBAAGjggIRMIICDTAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFA/jmga8+2C2vSlUxmsjDAX+QRqUMB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMBoGA1UdEQQTMBGCD2J1b252aWFnZ2lvLmNvbTAT BgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB1AO7N 0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjqnDVfwAAAQDAEYwRAIg Pe1umkH7y2jGiFQmtS8tnoUKjuSp/JqYYhu7TupHiPoCIBmhztvEtrUdb7XFzsS5 GRk7ZkBA615FhSv3bcXba1ARAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/ qznYhHMAAAGOqcNZrQAABAMASDBGAiEAhe0DamPEUuIwEJv/xZ0W7t4hrzF+QGqm 4MhGXHuzIXECIQCS19NYByXeBdyGwgHrO3dd6GCgqlYy71RkP2lSh8qXDzANBgkq hkiG9w0BAQsFAAOCAQEAcmRBixmkWDdsf+E4HLsAXNklQufG3SE7b5qccvM7+fxF Ebj4WGR/DAaDZibkitXhegK+KQsSNaifaKdixyzmkX2bwjG4WzYYnJJPoSEz+qqF fbUCs6TgBZYJfgE98Q7hoGLT4OGbAfja1mN/WHkKiQu7/8deUAXpuH3IfkpEOJyM dwkJP+ctXBFuRSK1aP6m2jZZ7lqrle3vhK7MQE/z1rXre/MPb5UQ1ndnNYGvEPNc lYNl0s+JLl0I4Diw6h3CgYxWMc2ZBN+XTt9JYs5vS50TDrA0qkG6zBckzE3pz0TS lnF4BFf9qH3pqO0/Z/Nxb5cKcJa6mHlOU+XZtvOkZA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvdPzNWgLFcBtapVliKdt fSbcknqttDlI1AmObjBhEYVRYDJpCW+/CIC0po2Y5f4X3I6zocqjBuZ+iZvqPv/J 3xDvoq0mmG/QAJdoKKvhGg/Uo0PYUgQhPJjrAUWrcsXXKmKYohNBqXqi3XCNNAMI 3zVa+IzkR7rjh4IYaIUuqFD5R6cWlGIwPKKLlNzBV+3Z991kqv1mdpuaytrBZooA JBrnf2oCUU11eNINLMZuVx/8aPNO/6vCEIcN+aC5KG+UVtlkRW1K15alRZB+OuBG SH4ewvY4xByCtY27FAmlFldLTnmy+reVl61InpynysZLdiQlZM9N0dn+7Y/XpTy2 OH882RYQ9nYKxJ2FC3nX9kVedE1SdxumK04Mp5E7dzvMbPsytQ+2l0iQ7mjqkUXl Tkxbr8j63xZ3+tojGZzKzc8jcmhPW3/4WyZtscFJOkFmnWWsI7Uee/V43wOysQK3 M0Zt26JlVl38+Hnxvgklfgi/q2M5FhaNUenZDo6AGBAnEqK5Ma/rauda/sM/xd8Y zexB5tp6pK9VJzJxeIs4DKNlG0WC0xj8CsLp6nsZIKJ3Oty7laujS4nNswO/akrf l2gqYwazPXEbmCcfp/8Jnu1oN4bugI1IbcgflUCVZC1HVe15QJktehEK3dvZkWMv xe8NKjr6sgiUU0jdsxsE6YcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 351726211106113988446515856133179255202900 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-04 14:38:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-03 14:38:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'buonviaggio.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 774430387830676665292884614083124340282046225983480563572590426470592910485295680832973213332161403293347787465743493552174797167115196776862003141568579573952897643440432363264124220909204355894975540837659289267033700545841291092236804932716351488438140380958666590156559293051403192457550526262903356122715858154762238279954485529520399696362378144473644170265791411377593383090223846541217738210442527250937418881034861253269416924015302955185122555064350255019018578724841671787822979740201121686419606669248134005083933486007508794218222760461937811711103779846440265929625613513288820490242361540656902421901418078643621301647101280652276931855816003751933093001100098303369755916396998973063642632142224430608503385525814536258953841041457183723695799752599653125892260775523464366504188886678629923992503480163580769312341514403465371923650964066736992530416993430328192459301036567762816013518097551249300937776229936576892875815658118903641436446992732048272831833687084504678498764993097070736557292301255772950378919315244411146263049537465460270010852565698393044413689906538341724808753561034982641451776379704332881288130057434505718090876705314949840679662021027409385553434486399385471213922360617020117742644423047 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0fe39a06bcfb60b6bd2954c66b230c05fe411a94 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'buonviaggio.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ea9c355fc000004030046304402203ded6e9a41fbcb68c6885426b52f2d9e850a8ee4a9fc9a98621bbb4eea4788fa022019a1cedbc4b6b51d6fb5c5cec4b919193b664040eb5e45852bf76dc5db6b501100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ea9c359ad000004030048304602210085ed036a63c452e230109bffc59d16eede21af317e406aa6e0c8465c7bb3217102210092d7d3580725de05dc86c201eb3b775de860a0aa5632ef54643f695287ca970f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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