sanpietroinlama.org
Issued by R10
About this certificate
This digital certificate with serial number 03:1f:95:45:59:e2:1e:aa:d7:12:fc:f4:f5:a3:73:86:e3:26 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sanpietroinlama.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:1f:95:45:59:e2:1e:aa:d7:12:fc:f4:f5:a3:73:86:e3:26Serial Number (int): 272084026232734534211970792734653764002598
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5d:69:db:70:1e:bd:21:26:27:2f:d4:3a:f8:db:29:a6:81:f4:e6:85
AuthorityKeyId: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8
Fingerprint (sha1): 27:74:f5:73:84:7e:7f:a3:eb:0c:ef:56:b3:63:31:ec:a5:de:c3:f6
Fingerprint (sha256): b4:30:00:0d:0a:85:12:ac:3c:57:13:49:e4:2f:9f:94:d0:77:8d:bf:92:e3:16:93:8a:8e:02:ae:46:c6:99:4e
Issuing Certificate URL: http://r10.i.lencr.org/
Revocation information
OCSP Server: http://r10.o.lencr.orgCheck the revocation status for certificate sanpietroinlama.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sanpietroinlama.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sanpietroinlama.org
Other certificates including the domain name sanpietroinlama.org
(limited to 100 certificates)
sanpietroinlama.org
sanpietroinlama.org
sanpietroinlama.org
sanpietroinlama.org
www.tipkissersofgab.com
curacarpignano.org
internet.casa
sanpietroinlama.org
soglianocavour.org
942.me
lorella.org
sanpietroinlama.org
sanpietroinlama.org
sanpietroinlama.org
montesanosalentino.org
sanpietroinlama.org
sanpietroinlama.org
sanpietroinlama.org
sanpietroinlama.org
sanpietroinlama.org
www.tipkissersofgab.com
curacarpignano.org
internet.casa
sanpietroinlama.org
soglianocavour.org
942.me
lorella.org
sanpietroinlama.org
sanpietroinlama.org
sanpietroinlama.org
montesanosalentino.org
sanpietroinlama.org
sanpietroinlama.org
Certificate
The complete raw certificate details for sanpietroinlama.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9TCCBN2gAwIBAgISAx+VRVniHqrXEvz09aNzhuMmMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQwNjEwMDIyNjM2WhcNMjQwOTA4MDIyNjM1WjAeMRwwGgYDVQQD ExNzYW5waWV0cm9pbmxhbWEub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC CgKCAgEAmGdaNjnmxQlzKgEXgjlfSMYKY1iQCIO5JQeHXbx6G5hl6DwhZPZRlqjJ GPk4fTXgXEjb4hSz4pdwCOm0m72Wx6w2cX0Gys44nCtOyMkQYrhNSS4idnLupsZQ 34+jbG4nyAe+9f3QWXqxCRo2k8BtnVorhTYbm3nYe2j8AILCT4t2nJYUjcEZzcXw 5rZPnoImN9qkF894ok/CIE9GJDWqK+uflkD2ePtyLaRCCUVybM9zMV8q0I1fBA9Y lU+miAB//e4FM4viObrMZD1mtPNNumfQcyy6DcNIT889p0tOjwgc474R7Wx3Doq4 EPj0xmrNhE1oZKsb1Xp9u6k5wqwXaNYMiT2Lk6fzzVCasnjgb347Ucrm3gKXsSnH yxhdrTx23L8vi1fVkFt0Dle8uC8x0cmtAVj39BIXZJYgJq7xDYtpwtRxHm94GUhd ekawpO+zRo1n6FQPfOiDzjxfRPqJocxckhZR2JqPhEjXOF6yScOZbp8gqakmtieQ 3JYiqZpr3w4I6r0lO240dvrm4eA2ppv+ykEN1UbdoawOCGcP9xBFhmILD6AT4SGV SRPRwZWz7tsvtBlOiQuJ/ihX5C99VjvMasVz5SKaHb43hZOlsqmZ0Wl9Y+yPVzdM oanSTuF0PdtZy+3743Ap1a4U4XiVg4bgHKrvNj90QSsc6s6kk4cCAwEAAaOCAhYw ggISMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUXWnbcB69ISYnL9Q6+NsppoH05oUw HwYDVR0jBBgwFoAUu7zDR6XkvKnGw6RyDBCNojXhyOgwVwYIKwYBBQUHAQEESzBJ MCIGCCsGAQUFBzABhhZodHRwOi8vcjEwLm8ubGVuY3Iub3JnMCMGCCsGAQUFBzAC hhdodHRwOi8vcjEwLmkubGVuY3Iub3JnLzAeBgNVHREEFzAVghNzYW5waWV0cm9p bmxhbWEub3JnMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB 9ASB8QDvAHUAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGQAC74 jQAABAMARjBEAiATTzg0dJzAS/UBjC9aK9a24pXFNmix1ajAncPq/eLMsgIgNedZ worRKtNTDIYltgRjwXajenYNSX3JYkWXUG7ibCkAdgB2/4g/Crb7lVHCYcz1h7o0 tKTNuyncaEIKn+ZnTFo6dAAAAZAALvjOAAAEAwBHMEUCIHcHUZfovoDSDHWUpFc4 jBi/4Q/IW+i6dNsUXse8BCkNAiEA0v1zlNzD1v32zTzq/LL84G90kvmo35TuYlqp posWMcUwDQYJKoZIhvcNAQELBQADggEBABQNHmaAPT/7IItC4Eir4ZXk+bJO0UNq ItKyeIkNfiIaUsXTr8mVk/627jljy0hWEAPGVRV2elqgqrj1Qv/JtpoN98qD7Dce 6EreKHT4X6D7JA0VG66OwYEzMJj1uTUl62JrYwX9Y1iky6Kp3CW7KETwF7/MYGK9 cIS8ABDJuP/08rupYSk/H5u10tmDpFxq3j2jDHG9ZKlU6TAkctPC8KQBJ0V7SomU 6JBQrZ4FkEOWtDgBgh1WvNlC/+RKtW2AcobsiTKcnX5z+OJs+RXZTRnrd6jj5gGz vHK9DK7K0cl7pa8wszIekJmXaGpWP8Kqc2CCS7VtujPpyHNN4hnQXzM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAmGdaNjnmxQlzKgEXgjlf SMYKY1iQCIO5JQeHXbx6G5hl6DwhZPZRlqjJGPk4fTXgXEjb4hSz4pdwCOm0m72W x6w2cX0Gys44nCtOyMkQYrhNSS4idnLupsZQ34+jbG4nyAe+9f3QWXqxCRo2k8Bt nVorhTYbm3nYe2j8AILCT4t2nJYUjcEZzcXw5rZPnoImN9qkF894ok/CIE9GJDWq K+uflkD2ePtyLaRCCUVybM9zMV8q0I1fBA9YlU+miAB//e4FM4viObrMZD1mtPNN umfQcyy6DcNIT889p0tOjwgc474R7Wx3Doq4EPj0xmrNhE1oZKsb1Xp9u6k5wqwX aNYMiT2Lk6fzzVCasnjgb347Ucrm3gKXsSnHyxhdrTx23L8vi1fVkFt0Dle8uC8x 0cmtAVj39BIXZJYgJq7xDYtpwtRxHm94GUhdekawpO+zRo1n6FQPfOiDzjxfRPqJ ocxckhZR2JqPhEjXOF6yScOZbp8gqakmtieQ3JYiqZpr3w4I6r0lO240dvrm4eA2 ppv+ykEN1UbdoawOCGcP9xBFhmILD6AT4SGVSRPRwZWz7tsvtBlOiQuJ/ihX5C99 VjvMasVz5SKaHb43hZOlsqmZ0Wl9Y+yPVzdMoanSTuF0PdtZy+3743Ap1a4U4XiV g4bgHKrvNj90QSsc6s6kk4cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 272084026232734534211970792734653764002598 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-10 02:26:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-08 02:26:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sanpietroinlama.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 621752933356545671814682059676814834781125507231969065325130229031630500994234662634852438059272332324236128783992804918123905270598607109231286675890369370791237242180813510066607821739886689939706618305569669348013408224241195520562438235550738240157225730920904286318297238175644895542415127273837055651986479836729207874034765784911979852467198508443946899832134355977689849861904315127937559137512699258661891726180864391341722607813001102496772309569812812769026995713864264317762414451734959541713981245222983525268008167605829203129657284773826747986877934601810518261664271187380273829633115029980414634591047076860279952389026968048515759316225050151072692841972579320126042395299766836377173213577542436110207300487856551197153777885883201834375099470682161326755231818372521662974587530112156791463284169295487513995094772442042018469230403590279495958549528014704926929717639312274524306122826638295759570595604496574717442354752521142695327168765991282911041351916194762654852478658701007098093121358462707741879046477443989053916039148194614322976634538697172937673867167725958449151803130851767236964731130018747246250961784927694237312157830826770132441279325364137650601527180421431624159675678274688424091939279751 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5d69db701ebd2126272fd43af8db29a681f4e685 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sanpietroinlama.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e00000190002ef88d00000403004630440220134f3834749cc04bf5018c2f5a2bd6b6e295c53668b1d5a8c09dc3eafde2ccb2022035e759c28ad12ad3530c8625b60463c176a37a760d497dc9624597506ee26c2900760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a7400000190002ef8ce0000040300473045022077075197e8be80d20c7594a457388c18bfe10fc85be8ba74db145ec7bc04290d022100d2fd7394dcc3d6fdf6cd3ceafcb2fce06f7492f9a8df94ee625aa9a68b1631c5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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