www.montesanosalentino.org
Issued by R3
About this certificate
This digital certificate with serial number 03:87:0c:62:e2:42:6a:dd:5e:8b:ec:01:65:5d:30:4b:cd:42 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.montesanosalentino.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:87:0c:62:e2:42:6a:dd:5e:8b:ec:01:65:5d:30:4b:cd:42Serial Number (int): 307291441499735690092359424488946572971330
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f1:a9:a5:79:09:eb:12:c7:c0:87:19:95:0e:31:85:52:f2:08:23:31
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): a1:d1:2b:32:38:f7:2b:f9:10:38:4a:67:5b:ac:f2:c0:7a:f4:ca:ae
Fingerprint (sha256): a6:1c:e6:58:7e:85:75:ae:87:d2:a0:58:de:11:8a:44:9c:95:6a:6f:80:77:77:b1:c6:d7:67:21:2e:bf:c2:5d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.montesanosalentino.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.montesanosalentino.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.montesanosalentino.org
Other certificates including the domain name montesanosalentino.org
(limited to 100 certificates)
montesanosalentino.org
montesanosalentino.org
montesanosalentino.org
www.tipkissersofgab.com
montesanosalentino.org
curacarpignano.org
montesanosalentino.org
montesanosalentino.org
soglianocavour.org
internet.limited
www.montesanosalentino.org
montesanosalentino.org
superyacht.sale
montesanosalentino.org
www.unwinedandrelax.com
montesanosalentino.org
montesanosalentino.org
montesanosalentino.org
www.tipkissersofgab.com
montesanosalentino.org
curacarpignano.org
montesanosalentino.org
montesanosalentino.org
soglianocavour.org
internet.limited
www.montesanosalentino.org
montesanosalentino.org
superyacht.sale
montesanosalentino.org
www.unwinedandrelax.com
montesanosalentino.org
Certificate
The complete raw certificate details for www.montesanosalentino.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGAjCCBOqgAwIBAgISA4cMYuJCat1ei+wBZV0wS81CMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMDgyMDEyNDJaFw0yNDAxMDYyMDEyNDFaMCUxIzAhBgNVBAMT Gnd3dy5tb250ZXNhbm9zYWxlbnRpbm8ub3JnMIICIjANBgkqhkiG9w0BAQEFAAOC Ag8AMIICCgKCAgEAvsUwkx4L7CgfE7OPd3wCGzaBqKci5NepqMldUaBHVFG/ffe1 C3m1CJGlfO6QrgBA9w5oyQFygikGDWqxgMPCzWwkracOlBOmHhPz2jGWheZqnh69 O2/0Sq5K3PnXPyrM4NF/7S+CO3ljrBBTALxfPlb85CICBRTCh6JvA2bQSDH7CTFY uA4k02A6u87Q61dxAGOG54u3SY4V90QoG/sq8+bYqCojJi3stLU+Doq2K19+nH/x ssHSeILiVJ223bYhqm9jDzqperL+lYr2PdzxFbPcB1cBw7c7UaX2+lPEhc++IdO8 hEI5gsdF+L8TF8fTRmlrADzUrIePdegye3Rftzk9WN22uvD8qVVdsptWpSFEKvBe dVO3dRThfwkLfH+lMJPeTGb9y7iA7X4WpmQ7BSnx70ZCc/oRwnQoI0NoZRYuC8nd mx1SBMGL2AJoivYi+KddMPlvE6YR4zNTty4MW+7oYLoK+gfU+4c2C/9TJAaXtg4X OJMAryC5n1PBLGCs9IVp8+G/DgrRP9jri8+lIyGPKRuCdnIPxjCSMGtB9INdTY03 UxWuCsL0g9ZHCz50FC/N0njhXfQbzyZFhUaJ5clLHpnTZTkiiL9KtXNvZKzcuQbt ucaI+vbLMbHpf76Tp2LiMvtF2louPdyU57fr/epoTj5C7huoRLIwm49tlrkCAwEA AaOCAh0wggIZMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU8amleQnrEsfAhxmVDjGF UvIIIzEwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUH AQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYB BQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wJQYDVR0RBB4wHIIad3d3Lm1v bnRlc2Fub3NhbGVudGluby5vcmcwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgor BgEEAdZ5AgQCBIH2BIHzAPEAdwA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv 4frUFwAAAYsRIpqrAAAEAwBIMEYCIQCqZer67Og9bT7bQQX66lOrTG2TOMEk4Nl5 w1w08bKMggIhAI/SrLd/XUrIL7KrEmIqxYJXiq7D2hnhP86NSxO5O7uEAHYAdv+I Pwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGLESKcNQAABAMARzBFAiEA 6nbyxp5t3Rt+tA3INYbY6al93Tl4QYpOEXXW+XLntHkCIGJB1Xh3JoPxxVSpPOsy KNpUBnMhwEFsku8f3dOSCzGbMA0GCSqGSIb3DQEBCwUAA4IBAQAUrX3eD6eVvdFT gR40ymbdZAQ9x1iqOnf7QZyEdSNROfQ5Qh6NpTeQpH9J7w140BuVL74DaAXp3zru b8uw1cDOoLBMAl2riNl4rfQm6VghS84kqUG+1ehk1W9s2Av/NTjpDewVjQi2ezZU IMPm3W03f60misJEB3fFcMMFlgfA1O1hbpY2lIpOJtk8cQmsb6i03oF7IkqabJ3H n4AdmCHgaB+MbVOoSOdk+JkOVVMguN/zzZORLtqe+1Gd8t9OI4ah9TvnolSKjBEg 56p5EyTTE+Xzr1DCfr1/yeC87Jyn91wMm2Fl9f4vl2f8B2r1rXdXkovAnGOpDuid cYACE3AG -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvsUwkx4L7CgfE7OPd3wC GzaBqKci5NepqMldUaBHVFG/ffe1C3m1CJGlfO6QrgBA9w5oyQFygikGDWqxgMPC zWwkracOlBOmHhPz2jGWheZqnh69O2/0Sq5K3PnXPyrM4NF/7S+CO3ljrBBTALxf Plb85CICBRTCh6JvA2bQSDH7CTFYuA4k02A6u87Q61dxAGOG54u3SY4V90QoG/sq 8+bYqCojJi3stLU+Doq2K19+nH/xssHSeILiVJ223bYhqm9jDzqperL+lYr2Pdzx FbPcB1cBw7c7UaX2+lPEhc++IdO8hEI5gsdF+L8TF8fTRmlrADzUrIePdegye3Rf tzk9WN22uvD8qVVdsptWpSFEKvBedVO3dRThfwkLfH+lMJPeTGb9y7iA7X4WpmQ7 BSnx70ZCc/oRwnQoI0NoZRYuC8ndmx1SBMGL2AJoivYi+KddMPlvE6YR4zNTty4M W+7oYLoK+gfU+4c2C/9TJAaXtg4XOJMAryC5n1PBLGCs9IVp8+G/DgrRP9jri8+l IyGPKRuCdnIPxjCSMGtB9INdTY03UxWuCsL0g9ZHCz50FC/N0njhXfQbzyZFhUaJ 5clLHpnTZTkiiL9KtXNvZKzcuQbtucaI+vbLMbHpf76Tp2LiMvtF2louPdyU57fr /epoTj5C7huoRLIwm49tlrkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 307291441499735690092359424488946572971330 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-08 20:12:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-06 20:12:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.montesanosalentino.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 778274810317503709529451203336773749333008669495565881491225682988683540418044005692770404116570259385021446584140437179542016342937746587032372326602480266695821305372365368202167417684163273642702320190091252483858453349455258307272526228240734097333871640164806951664499163901506416192286922836503388199257194295161661474717388432397492610560621658736267155988602080676651424021371070605326587166367235596006009643626850818700727601231607998045998047615812266117074489097406767110734004232428971756990902281245887397035714069770394870762046594124582428310674835153284729530180858205961896852879838472377710081686399349893951658265722677809629033816281295294588384176706204764410140305097294938704710267510870732449092107002356961251530164752447877575813042896599787713357356297937293217069170551685873681766025368346807287515308241752426697539045727541326871448466667034831812553521024034477669764013644252503710246225467792974380422679333857498186976948680062386948417974135365934548606212875898671485056813984262180432086840183569156585363004728189039662792725140274532008944238254567682320840654094998538799789584874558498340824307598351375206125820190608259987427793584116791296256299794182174658961481170772556008796755695289 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f1a9a57909eb12c7c08719950e318552f2082331 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.montesanosalentino.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b11229aab0000040300483046022100aa65eafaece83d6d3edb4105faea53ab4c6d9338c124e0d979c35c34f1b28c820221008fd2acb77f5d4ac82fb2ab12622ac582578aaec3da19e13fce8d4b13b93bbb8400760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b11229c350000040300473045022100ea76f2c69e6ddd1b7eb40dc83586d8e9a97ddd3978418a4e1175d6f972e7b47902206241d578772683f1c554a93ceb3228da54067321c0416c92ef1fddd3920b319b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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