natur.it
Issued by R3
About this certificate
This digital certificate with serial number 04:fd:db:b0:92:1a:25:30:88:9d:fe:5f:67:0f:e5:d4:d8:e3 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=natur.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:fd:db:b0:92:1a:25:30:88:9d:fe:5f:67:0f:e5:d4:d8:e3Serial Number (int): 434832600296665660526031724719567925467363
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d2:83:04:e0:9c:4a:1f:95:33:6c:74:48:14:de:9b:d5:05:d0:38:e1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): e8:cd:3b:a3:9c:f1:84:e7:13:11:1a:71:23:cb:16:be:fa:73:80:e9
Fingerprint (sha256): b1:b2:80:70:87:12:de:38:98:6f:6f:25:ba:e6:7b:95:fb:36:21:30:fa:7a:6a:e8:d9:d6:80:78:32:2e:d7:4b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate natur.it
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for natur.it
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
natur.it
www.natur.it
www.natur.it
Other certificates including the domain name natur.it
(limited to 100 certificates)
shop.natur.it
shop.natur.it
natur.it
promo.natur.it
natur.expolab.it
natur.expolab.it
natur.expolab.it
promo.natur.it
privacy.natur.it
natur.expolab.it
natur.expolab.it
natur.expolab.it
natur.it
natur.expolab.it
natur.it
natur.it
natur.it
natur.expolab.it
natur.it
academy.natur.it
shop.natur.it
privacy.natur.it
natur.expolab.it
shop.natur.it
shop.natur.it
natur.it
natur.expolab.it
natur.it
natur.expolab.it
shop.natur.it
natur.expolab.it
natur.expolab.it
natur.it
promo.natur.it
natur.expolab.it
promo.natur.it
privacy.expolab.it
promo.natur.it
shop.natur.it
privacy.natur.it
academy.natur.it
promo.natur.it
natur.it
natur.it
natur.it
shop.natur.it
natur.it
shop.natur.it
natur.it
academy.natur.it
shop.natur.it
natur.it
natur.expolab.it
natur.expolab.it
promo.natur.it
shop.natur.it
natur.it
natur.expolab.it
shop.natur.it
promo.natur.it
shop.natur.it
privacy.expolab.it
shop.natur.it
natur.it
promo.natur.it
natur.expolab.it
natur.expolab.it
natur.expolab.it
promo.natur.it
privacy.natur.it
natur.expolab.it
natur.expolab.it
natur.expolab.it
natur.it
natur.expolab.it
natur.it
natur.it
natur.it
natur.expolab.it
natur.it
academy.natur.it
shop.natur.it
privacy.natur.it
natur.expolab.it
shop.natur.it
shop.natur.it
natur.it
natur.expolab.it
natur.it
natur.expolab.it
shop.natur.it
natur.expolab.it
natur.expolab.it
natur.it
promo.natur.it
natur.expolab.it
promo.natur.it
privacy.expolab.it
promo.natur.it
shop.natur.it
privacy.natur.it
academy.natur.it
promo.natur.it
natur.it
natur.it
natur.it
shop.natur.it
natur.it
shop.natur.it
natur.it
academy.natur.it
shop.natur.it
natur.it
natur.expolab.it
natur.expolab.it
promo.natur.it
shop.natur.it
natur.it
natur.expolab.it
shop.natur.it
promo.natur.it
shop.natur.it
privacy.expolab.it
Certificate
The complete raw certificate details for natur.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgISBP3bsJIaJTCInf5fZw/l1NjjMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA2MjMxMDU1NThaFw0yMzA5MjExMDU1NTdaMBMxETAPBgNVBAMT CG5hdHVyLml0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrJI9gjm qnCC5hGf9AUvAWg4riZSQDJ6Cn0wdrT1H2Ul/CYiH8BpC+zoU2mZWKPb6Rr5ysRg qix9EnsyCSHC4eZhorsH1chJnollcsyRu1UE9ScudKME9/JPcVahQXIqbdYk3b1l GyjaUlSTXge8JMceKvCDj18XlG1ee+x778OZonb6yAiwVpT6Imr1FE/wsvOkqxYx gAMDp90fQkSGLFHIg6BYgrdMGbFazdk5pSG0iPkDsBv/NAnB1HhRpzME1k3PiIuy A/94SouGXCddhlqm2ZWcvP3RXgFM0nLpXEcrFQdST647DxaTdJ9EQWsq3vijNrcV wgNKJMjI7HUJdwIDAQABo4ICGDCCAhQwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTS gwTgnEoflTNsdEgU3pvVBdA44TAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+d ixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxl bmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAhBgNV HREEGjAYgghuYXR1ci5pdIIMd3d3Lm5hdHVyLml0MBMGA1UdIAQMMAowCAYGZ4EM AQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAtz77JN+cTbp18jnFulj0bF38 Qs96nzXEnh0JgSXttJkAAAGI6BxzawAABAMARzBFAiEA+vBnDmf/UWfNJofl+6lS mj5Ylrribf6J1NXms+EWZXwCIENWRvxLqCk8a+dB0wvzKp3neFHfNsNlXTIDJskj ZFFHAHYA6D7Q2j71BjUy51covIlryQPTy9ERa+zraeF3fW0GvW4AAAGI6BxzZgAA BAMARzBFAiAHTrVd+xyMQwTcR4X287WErE/YXwZ7mX1gICX3UfLT5AIhALs4kcwG acUWGqyzyTUZd3O2ku/3OxZcLmvfn4uJTVNDMA0GCSqGSIb3DQEBCwUAA4IBAQBx KueVhn64gJV5ffFZdO71EZRLL+zyDUHASgTbi5+wOVPjL9lD5i8DVNdbeLIVRWcR 2AogCDJ4S7yzNyTsJYjdVFrLtZ8cJKRdMgLhECrLVxrTCaoTAqok88vYEVOVmBYA XJxqu2g5lPT/H9Up9m1encNlycarKovO5rnjn2B8igD7heNCEVgTd8PQklfnA9QJ Nz49vcIaTpP7EfLguGzn8/9iQGly/RHZFP98yYxT/0ygl+g8a4PNKGrGAwigtEgR l2lJ3OzWhrCKkPieUxNkUXLgTQIZPj0+nfnhD6M3wgAq8OwCZsqOO8RxtdDQpjjZ o1b8OCmBDyAC+LUP+xfY -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrJI9gjmqnCC5hGf9AUv AWg4riZSQDJ6Cn0wdrT1H2Ul/CYiH8BpC+zoU2mZWKPb6Rr5ysRgqix9EnsyCSHC 4eZhorsH1chJnollcsyRu1UE9ScudKME9/JPcVahQXIqbdYk3b1lGyjaUlSTXge8 JMceKvCDj18XlG1ee+x778OZonb6yAiwVpT6Imr1FE/wsvOkqxYxgAMDp90fQkSG LFHIg6BYgrdMGbFazdk5pSG0iPkDsBv/NAnB1HhRpzME1k3PiIuyA/94SouGXCdd hlqm2ZWcvP3RXgFM0nLpXEcrFQdST647DxaTdJ9EQWsq3vijNrcVwgNKJMjI7HUJ dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 434832600296665660526031724719567925467363 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-23 10:55:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-21 10:55:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'natur.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22558333896185571944963730355804255990966343382661251063791709843719032068580954811549605594517524057780547849657918728783380105406506255128068555999406358675024078286154394828428836835169813873806132816802307917256592499936622670246748630688037628497029667210347343206232342873103236934874348071891004161367754667393336406812003771624357603276620777398618788873417881280539461887455786004804376173778146710114332642826835190465111821290534595232247585493854325063285611919079062019946224987690392570682046232174185148336942412617645214909350449189434298885398522173584476200599462210434003084095076698118009799379319 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d28304e09c4a1f95336c744814de9bd505d038e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'natur.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.natur.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000188e81c736b0000040300473045022100faf0670e67ff5167cd2687e5fba9529a3e5896bae26dfe89d4d5e6b3e116657c0220435646fc4ba8293c6be741d30bf32a9de77851df36c3655d320326c923645147007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e00000188e81c736600000403004730450220074eb55dfb1c8c4304dc4785f6f3b584ac4fd85f067b997d602025f751f2d3e4022100bb3891cc0669c5161aacb3c935197773b692eff73b165c2e6bdf9f8b894d5343 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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