www.resortstoscana.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:21:fe:f0:1c:80:03:af:0d:7e:68:f3:21:ec:81:3b:d6:d5 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.resortstoscana.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:21:fe:f0:1c:80:03:af:0d:7e:68:f3:21:ec:81:3b:d6:d5Serial Number (int): 272905046543896940009354594999176707954389
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 7d:40:3c:52:f7:fc:6d:82:db:ad:e0:e4:77:ef:af:cd:1e:d1:8c:1c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 1e:2f:af:66:f0:af:7d:31:55:1b:44:22:10:a7:56:c0:39:60:07:ac
Fingerprint (sha256): b0:bd:d4:cf:54:16:56:8d:4c:95:16:c2:21:79:79:10:68:60:33:10:b0:19:75:bf:78:6d:6c:ae:04:f4:52:b4
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.resortstoscana.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.resortstoscana.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.resortstoscana.com
Other certificates including the domain name resortstoscana.com
(limited to 100 certificates)
resortstoscana.com
www.resortstoscana.com
resortstoscana.com
www.resortstoscana.com
resortstoscana.com
www.resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
www.resortstoscana.com
www.resortstoscana.com
73282.com
villingenschwenningen.org
www.resortstoscana.com
resortstoscana.com
valutazionemoto.com
www.resortstoscana.com
resortstoscana.com
www.resortstoscana.com
resortstoscana.com
www.resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
resortstoscana.com
www.resortstoscana.com
www.resortstoscana.com
73282.com
villingenschwenningen.org
www.resortstoscana.com
resortstoscana.com
valutazionemoto.com
Certificate
The complete raw certificate details for www.resortstoscana.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZjCCBU6gAwIBAgISAyH+8ByAA68NfmjzIeyBO9bVMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDQyMzQ4MDBaFw0y MDA1MDQyMzQ4MDBaMCExHzAdBgNVBAMTFnd3dy5yZXNvcnRzdG9zY2FuYS5jb20w ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDNwYnrYeccMOb4xk+iLg3P PZRtXsPC0eaTxIztYzI1MCrp8wKMf6eS21xuCDekcWZDfprLA/eEkD8BHsw2cruB RsFBihhFg8Uu2st+QirbI7D8BiTIKsA2f/J5NHnlBu+z55HmYyD8hCCRFg8cTrin sBUPNjcHFXWzns7lAu582ynvo20hQgQsqJm9b790GQBetoSk8UFdeXV2HCm57hJw SwCT9ZW0oo84/LNbfrGTREqwUtEHWatBwtkdmhAQu2pfFsFMVq/8pHo8CRe4JsQY 7dfPsD7E2APfHbiC+H3utcj9iSpzHLN0jsWHWE6OS2v7b/WULNrTGsCjlKaIJIyL 3pXSJAYOL+f4kOABPNtEtOpRVFEuBuF+pn89iA2WqNfsvZh84aRVA50aVF28JU+v Fat8F8vhBJgA/Jqz3NFCnqIW87v/l16FieYRFddqOTcvICEJbNHVFcJR0n+zgdr5 4/5k3ZH2VQCYmqOAkUixFTE8Uc87Bz2/zrTFP6jVAmyoWND3/TOfTphcSdBdq3W2 y4w7y6DVFoRDl82kVL6ifadc36gJ4+x71XvIADFyQDj2wuaFGjY4VzGpChY9/PUB nn9Upf4IlYNRaoYKQmWkNYOurakvkIHmgFKO2bidyJbMoeLC0Kn8pXVy+B5nTvZW MQDVw6c53BUh8weV05ifvQIDAQABo4ICbTCCAmkwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBR9QDxS9/xtgtut4OR376/NHtGMHDAfBgNVHSMEGDAWgBSoSmpjBH3duubR ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEGA1UdEQQaMBiCFnd3dy5yZXNv cnRzdG9zY2FuYS5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEG BgorBgEEAdZ5AgQCBIH3BIH0APIAdwCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOey SVMt74uQXgAAAXAS0XGoAAAEAwBIMEYCIQDcKKwkoIheISAW/F5QC7Nt899ZWCbm acYCcFFUVqpaewIhAMx4HCakERgubeiE4BPzD2lRYl/ej9MA4tELVm29QuaeAHcA b1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFwEtFx4gAABAMASDBG AiEAigvu0hXmyhkou29k17UQiOH6hWBKMtH1VJU65YgMfscCIQDCYZEovICZu8nv SDlRC0AChM7hr2XN66FNphoFYenyEzANBgkqhkiG9w0BAQsFAAOCAQEAN91eZJlR 4ymQ/H70tyLLd1gFJGz6qvNND7A9MNmTVBjqBJwudcyTp0jXKPC6vICSV/GYJeLy dnhbk/DXSwyErM2is8nkKi20xXMlbmU7KwcVa6Hlw68Npk76slcVYpYZrpMjI7A2 ppVUPCWtyMO/ZcRkSu2GadcXZ3mJEFHwfvrXPY2V0Z7FyitGBHdFav3Y2qz4UEfQ iweSTa2PxLZzMil58iOvLDD0VZCCfTqCM/R4YLfsMpZjAwEo+2g7GCaNjwT86xT2 ZtZ51WIZsXUlwHIrz/GARmn31vq6BmPfJ92duIl4gVT8OWh5JyITK6g9nYm/5OpM 1pf7fIiV5bq8Uw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzcGJ62HnHDDm+MZPoi4N zz2UbV7DwtHmk8SM7WMyNTAq6fMCjH+nkttcbgg3pHFmQ36aywP3hJA/AR7MNnK7 gUbBQYoYRYPFLtrLfkIq2yOw/AYkyCrANn/yeTR55Qbvs+eR5mMg/IQgkRYPHE64 p7AVDzY3BxV1s57O5QLufNsp76NtIUIELKiZvW+/dBkAXraEpPFBXXl1dhwpue4S cEsAk/WVtKKPOPyzW36xk0RKsFLRB1mrQcLZHZoQELtqXxbBTFav/KR6PAkXuCbE GO3Xz7A+xNgD3x24gvh97rXI/YkqcxyzdI7Fh1hOjktr+2/1lCza0xrAo5SmiCSM i96V0iQGDi/n+JDgATzbRLTqUVRRLgbhfqZ/PYgNlqjX7L2YfOGkVQOdGlRdvCVP rxWrfBfL4QSYAPyas9zRQp6iFvO7/5dehYnmERXXajk3LyAhCWzR1RXCUdJ/s4Ha +eP+ZN2R9lUAmJqjgJFIsRUxPFHPOwc9v860xT+o1QJsqFjQ9/0zn06YXEnQXat1 tsuMO8ug1RaEQ5fNpFS+on2nXN+oCePse9V7yAAxckA49sLmhRo2OFcxqQoWPfz1 AZ5/VKX+CJWDUWqGCkJlpDWDrq2pL5CB5oBSjtm4nciWzKHiwtCp/KV1cvgeZ072 VjEA1cOnOdwVIfMHldOYn70CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 272905046543896940009354594999176707954389 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-04 23:48:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-04 23:48:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.resortstoscana.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 839411288650399107572424566753865708946076203693392348046080781256360623581309955765959590793359835679768486110096702884019702870627507800965720562845585079091238548786553775118922496039345319737270271164860907382832197237482900023197136028565688337261859605590043003142903628681233786227213127320733051855940665062881460524391135499491197059978464061203079818645049813134558533887334056785537476219476148831486091438319394266099057925412296136966622824465842874870438376349034299657853032742717545736035837701996924004553575654794231808613724221670094131433026129895553090910714299400918060805700409447468746891538788664366880824418288375497023357873451434407523607066932023700590724899963879376245992892653524145952452786039097983594815656646942919645732002652746335900775465603401310460858236769936344867313329221492513783135235017165058801528279753908650756187060122707115190410375254225249115287187859781039046852540635616805705517216662191480080054998123645852591471076454630594629499955590247807831654120901852321161194045073214196462118684882620777008402421630623585140150454100280355431747168821180360486217662794997291500216161657312494356886026608535464085475715142528597170787514047086516326273290606264390665771022852029 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7d403c52f7fc6d82dbade0e477efafcd1ed18c1c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.resortstoscana.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000017012d171a80000040300483046022100dc28ac24a0885e212016fc5e500bb36df3df595826e669c60270515456aa5a7b022100cc781c26a411182e6de884e013f30f6951625fde8fd300e2d10b566dbd42e69e0077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000017012d171e200000403004830460221008a0beed215e6ca1928bb6f64d7b51088e1fa85604a32d1f554953ae5880c7ec7022100c2619128bc8099bbc9ef4839510b400284cee1af65cdeba14da61a0561e9f213 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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