curaseptspa.it
Issued by R3
About this certificate
This digital certificate with serial number 03:a8:4c:a8:06:9a:fa:23:56:cb:38:b5:fe:31:de:26:9c:2b was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=curaseptspa.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:a8:4c:a8:06:9a:fa:23:56:cb:38:b5:fe:31:de:26:9c:2bSerial Number (int): 318606189205523297882938961353870817008683
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 6d:b2:83:fd:d0:6b:bf:00:21:2d:13:16:0d:0b:40:a5:e9:11:df:64
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): e2:f2:26:a0:99:ba:52:07:09:09:35:e5:da:92:24:bd:32:85:11:0d
Fingerprint (sha256): ae:bb:40:be:ef:4b:26:ff:9a:27:f1:44:1e:91:68:e4:30:71:31:40:3c:e3:e9:a1:73:be:f7:fc:1c:9b:48:71
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate curaseptspa.it
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for curaseptspa.it
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
curaseptspa.it
curasf.site.tb-hosting.com
www.curaseptspa.it
curasf.site.tb-hosting.com
www.curaseptspa.it
Other certificates including the domain name curaseptspa.it
(limited to 100 certificates)
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
*.curaseptspa.it
curaseptspa.it
curaseptspa.it
*.curaseptspa.it
*.curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
mail.curaden.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
*.curaseptspa.it
curaseptspa.it
curaseptspa.it
*.curaseptspa.it
*.curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
mail.curaden.it
curaseptspa.it
curaseptspa.it
curaseptspa.it
Certificate
The complete raw certificate details for curaseptspa.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGjCCBQKgAwIBAgISA6hMqAaa+iNWyzi1/jHeJpwrMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MDEyMzQyMzVaFw0yNDA3MzAyMzQyMzRaMBkxFzAVBgNVBAMT DmN1cmFzZXB0c3BhLml0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA z18STbKiDS5FYvtUa0ZDpKS9JXnTi2oeTkabpRmrjhW4Vb9Di9ah8UlggWNO7fz7 vL2PdApGbwt1xR3swG7IV9dc3gql9fGr8VZETtof94KD+DB7rxQdox6OUKoZ+on9 RBnldIfh472UmtcCYYli0WJqMr1+vftq/48vO3XVxlJI4SlWl2HQuPJmdLMZew88 dRfVWuy9oVSTjTH5CsirkLNkpB1LaDK6RrjPLBiqVjk+bzRMG/5y3rJL4cNU51Hu tc57Xh4kexhlKs0yQdC4xVwbLSPI8ZlCx4OtD6mau0nSuMZ15U8JG8i0S1lfLSV1 k+DNz1gX2Z5HtjMgjBTwCQSlB8zGgMWcnpLQHTlX/LyRpVc6HjOnKgZJ7aUMnXcy +NAk8xJ6VHrYdAOiwH8rdI4x0SzKjxM5ukHtG6Ru9qfe9PrOkDIeoHhj1rZL9zCA Cs3k3OK/P8/d3pS9bpHAK9rno8bvGaJkhCutqh9L0LhGV0BxexzSpZuztr/AjoK/ oIiPgL4b7qqz2en3rG6hNVpkMDYLxsmArtVvaebL8JtPOw5YZMGz+QLb6Cs651zC 2HyfE05XmuUeft3a2gkpVerwoeSw6Uk95dtRDGDGpD4iHEgAIeekx9dIbabp3OWn p9v4segkmnBXP9o01gOSD4VjkiwOeeWHpoHiIqQ1k6sCAwEAAaOCAkEwggI9MA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQUbbKD/dBrvwAhLRMWDQtApekR32QwHwYDVR0j BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6 Ly9yMy5pLmxlbmNyLm9yZy8wSQYDVR0RBEIwQIIOY3VyYXNlcHRzcGEuaXSCGmN1 cmFzZi5zaXRlLnRiLWhvc3RpbmcuY29tghJ3d3cuY3VyYXNlcHRzcGEuaXQwEwYD VR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwB2/4g/ Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAY82wMr5AAAEAwBIMEYCIQC1 GqydKgQ5NPCvkKcKNytGIDg5Ri1mMF9sKveLyTofQwIhAKmxdJdBZyXTQd3sWAHa y9gprMVCxppNhJFzlbhTDxVeAHYA3+FW66oFr7WcD4ZxjajAMk6uVtlup/WlagHR wTu+UlwAAAGPNsDLaQAABAMARzBFAiBk7aZU+Y+HStOoNAm6o0ec66EiwEWshAA1 1U25BjEI5AIhAMDpABXN33UkgHTuh19NKQSyx7f7Ta3AV0DbHad3XC+gMA0GCSqG SIb3DQEBCwUAA4IBAQARNvY8YxF+H414ZNbqU/VDETrlaKsU2WcwVxMLqZdpm+Ww yJLGz9TGP4l1jUc3pLqElWHW/d0XSlq4gbm5pDX2BYgMAigK3bThtxRUlIqt/oUQ LL/+jilD6Vc7dkayeVTODIY0i6O0qZg7pPeVsv02IIBU91g0o4s2o3bwetRLsivk nvLyqkpSO6dlokzusyuFDvjiTUxMBkT5JXhv/RzMShieZApXMKBr/vmaJnCymeKA ETSa3jNKyHShzUD/o0/5Jo3WvsS3XjrBWbPBNctVxiv/ER+jNxt68ozA+sRQ+kZo iDLVrN8fkl9D7XK7Z0htTjcQ2YhmvCkNpdbkE3O5 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAz18STbKiDS5FYvtUa0ZD pKS9JXnTi2oeTkabpRmrjhW4Vb9Di9ah8UlggWNO7fz7vL2PdApGbwt1xR3swG7I V9dc3gql9fGr8VZETtof94KD+DB7rxQdox6OUKoZ+on9RBnldIfh472UmtcCYYli 0WJqMr1+vftq/48vO3XVxlJI4SlWl2HQuPJmdLMZew88dRfVWuy9oVSTjTH5Csir kLNkpB1LaDK6RrjPLBiqVjk+bzRMG/5y3rJL4cNU51Hutc57Xh4kexhlKs0yQdC4 xVwbLSPI8ZlCx4OtD6mau0nSuMZ15U8JG8i0S1lfLSV1k+DNz1gX2Z5HtjMgjBTw CQSlB8zGgMWcnpLQHTlX/LyRpVc6HjOnKgZJ7aUMnXcy+NAk8xJ6VHrYdAOiwH8r dI4x0SzKjxM5ukHtG6Ru9qfe9PrOkDIeoHhj1rZL9zCACs3k3OK/P8/d3pS9bpHA K9rno8bvGaJkhCutqh9L0LhGV0BxexzSpZuztr/AjoK/oIiPgL4b7qqz2en3rG6h NVpkMDYLxsmArtVvaebL8JtPOw5YZMGz+QLb6Cs651zC2HyfE05XmuUeft3a2gkp VerwoeSw6Uk95dtRDGDGpD4iHEgAIeekx9dIbabp3OWnp9v4segkmnBXP9o01gOS D4VjkiwOeeWHpoHiIqQ1k6sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 318606189205523297882938961353870817008683 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-01 23:42:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-30 23:42:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'curaseptspa.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 846001391897181326642677025603422533877121181815778122332603778519882626219259285997111116991990333418348648284860736453577779395283067555023747131855929965126921884398289401523417822305845962465755742664339582959098494840241915709042690822288515058331672234135044377290218795459344789610124094902581495956379143773010260301411728950998805694753887557671958970234953808507957813600730737054019937746411630937056878800684205688517597423714429131928707139547859244137456967188124258083510351636201995861684556832837497091525342628626310032432530145344795850754388411814447006508113819472729239999745696525095424113670773683251089573319884191533632348771641183132932348435486810227391105146254394062891624792634578318971495045696348158526340335816896210255565778000553183108518464482087986135035996602416954881030693677876685673622837135690851753214832533243009177076982296031682322872162937680875485327665383179462456258760175760102439565707200958234734327489221507261228482175507427152498930729306781101579943937546652988491444759986994831423133103870172766911234693167559618548953287910655524859941848861020515664938809810596023634701085418117952190802064695672882209701685904514599092833398047946321084433492459329793980150677083051 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6db283fdd06bbf00212d13160d0b40a5e911df64 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'curaseptspa.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'curasf.site.tb-hosting.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.curaseptspa.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f36c0caf90000040300483046022100b51aac9d2a043934f0af90a70a372b46203839462d66305f6c2af78bc93a1f43022100a9b17497416725d341ddec5801dacbd829acc542c69a4d84917395b8530f155e007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018f36c0cb690000040300473045022064eda654f98f874ad3a83409baa3479ceba122c045ac840035d54db9063108e4022100c0e90015cddf75248074ee875f4d2904b2c7b7fb4dadc05740db1da7775c2fa0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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