carpignanosalentino.org
Issued by R3
About this certificate
This digital certificate with serial number 04:91:17:ab:76:3d:0a:69:f8:04:30:2d:20:66:a8:80:40:af was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=carpignanosalentino.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:91:17:ab:76:3d:0a:69:f8:04:30:2d:20:66:a8:80:40:afSerial Number (int): 397821549455403400412086836165208117887151
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 2e:17:af:05:92:df:87:1f:3e:af:16:65:0c:85:18:57:f3:38:12:1c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): a0:60:36:cf:b9:3c:20:1b:b0:68:7e:d6:f4:0e:44:a0:6b:5c:4a:5e
Fingerprint (sha256): bb:33:1f:5e:fc:03:22:0d:31:64:ab:85:6c:83:8b:cb:30:2f:15:a5:25:2d:25:f5:d0:8c:33:aa:95:7f:7a:be
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate carpignanosalentino.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for carpignanosalentino.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
carpignanosalentino.org
Other certificates including the domain name carpignanosalentino.org
(limited to 100 certificates)
www.carpignanosalentino.org
www.carpignanosalentino.org
www.carpignanosalentino.org
carpignanosalentino.org
carpignanosalentino.org
carpignanosalentino.org
carpignanosalentino.org
carpignanosalentino.org
chicagobirthlaw.org
carpignanosalentino.org
torricella.org
carpignanosalentino.org
havit.exposed
www.carpignanosalentino.org
tiggiano.org
www.carpignanosalentino.org
www.carpignanosalentino.org
www.carpignanosalentino.org
carpignanosalentino.org
carpignanosalentino.org
carpignanosalentino.org
carpignanosalentino.org
carpignanosalentino.org
chicagobirthlaw.org
carpignanosalentino.org
torricella.org
carpignanosalentino.org
havit.exposed
www.carpignanosalentino.org
tiggiano.org
www.carpignanosalentino.org
Certificate
The complete raw certificate details for carpignanosalentino.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgISBJEXq3Y9Cmn4BDAtIGaogECvMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MjIyMDMxMzhaFw0yNDA4MjAyMDMxMzdaMCIxIDAeBgNVBAMT F2NhcnBpZ25hbm9zYWxlbnRpbm8ub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEAr7sdau4KWjPzQUOuLtc6M4ZY9LcISVnf7ZVoUAir1ZnH5wM1q+LX /AVaG7J6HA8Sons7BEVgEjijwKWLoa6qmhiRVX3M+/qP9CBAJOV4j82WBKHs0Uyi 4N/xaNsfXZqlRGsoAvGTy4orhPdkxsS9jXzwZOJTU4jCnn2WPvrKVHhAkfHoqc5j bPJQhJjKiJodACfgBUhUG5cbljLaXgnNYL9IDYB6bxH775UcD2yEfKf/s3p+ETN7 rDW6+jP/8QEFo/pen+MSsKNW2FjnPx6cuCRfl0FoEdGorlfVg7hj7gwAP4X4qOdJ J6JQf6usWmIBMLzzarjlC5HMQQMEau6B+jHL7FBnrZKcWt5fj95LO9J++0v+8jCq TA6TNSAX1NIi3NN8u0gdS89G+qaswMQNkZfQsL1pS5F5CpeKRxiAtEn1a1pk6dBL epMNUi8IEeNRtChinhFSs03X0erYUtAgYFN61/qFlpk49NsnKfJXXv0vd0HvQ/jO 1jl+j6aIn0dWT0HqoQsC1HJkxD3flxdSCcWwWhH09+fvLFOeUthkU0YFIdwVYaD0 4JR+6N0ev+TtYFB0jS+5RIM3NvcZvPIcz0/jitNZZz7l3M+4zXfMXX4atUuRyXD7 1EEzrUNGtB2elOzRv3WP+rXJ6mZAhP+gS0w7Vmk2fqL1rfJpa6WNZn0CAwEAAaOC AhkwggIVMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULhevBZLfhx8+rxZlDIUYV/M4 EhwwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEE STBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUH MAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wIgYDVR0RBBswGYIXY2FycGlnbmFu b3NhbGVudGluby5vcmcwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5 AgQCBIH1BIHyAPAAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAA AY+iN4MyAAAEAwBHMEUCIQD1Q8uOBBUO4LU1iCmQakAiRJyKWlss3RhKHOUm27F2 BwIgBgWlf8PczLD/+q9fYtw5kQL/3WXG2XtuW+ulYEl1RpMAdgDf4VbrqgWvtZwP hnGNqMAyTq5W2W6n9aVqAdHBO75SXAAAAY+iN4RkAAAEAwBHMEUCIBc3kdhQrFud O/ZRzTL9kKAh5818u+Q1MK2GG/Fre7L+AiEAg+6+trGtJMwTSSHIcTaxGA+Tvc6n 8wthAyg/nE1G4LcwDQYJKoZIhvcNAQELBQADggEBAJLgeKxRNBt7Zv67yx5yHrLi +3SIX5egdKE0qHHv9qOD7OUYn91Psunm/YPSmdWhliqRk9fUNBKLMKVy8sFda/jX IWxanbysfzW357f8hZ6uNXog1ZNi5pNpp2Kimy0tNqCCdshWIILkE2Raf/hx4uPN 3fux0jxQh5bYBz4UpkGZGLcDDD2bto8lrI1qiidBkaIiqw8mnW4wBSqjX6YO7hVO fPTSBvAIitJLDFG0Ople5NlLToEdVvGG0r5/aL7yURczPiwg7FnWW3T6z6OReYKI DZVBpRF7s00w4v7dkoifbeUu9kN5B2NoCLD7NNwgUFXOYs+mlAyC1bb9+emjmoo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAr7sdau4KWjPzQUOuLtc6 M4ZY9LcISVnf7ZVoUAir1ZnH5wM1q+LX/AVaG7J6HA8Sons7BEVgEjijwKWLoa6q mhiRVX3M+/qP9CBAJOV4j82WBKHs0Uyi4N/xaNsfXZqlRGsoAvGTy4orhPdkxsS9 jXzwZOJTU4jCnn2WPvrKVHhAkfHoqc5jbPJQhJjKiJodACfgBUhUG5cbljLaXgnN YL9IDYB6bxH775UcD2yEfKf/s3p+ETN7rDW6+jP/8QEFo/pen+MSsKNW2FjnPx6c uCRfl0FoEdGorlfVg7hj7gwAP4X4qOdJJ6JQf6usWmIBMLzzarjlC5HMQQMEau6B +jHL7FBnrZKcWt5fj95LO9J++0v+8jCqTA6TNSAX1NIi3NN8u0gdS89G+qaswMQN kZfQsL1pS5F5CpeKRxiAtEn1a1pk6dBLepMNUi8IEeNRtChinhFSs03X0erYUtAg YFN61/qFlpk49NsnKfJXXv0vd0HvQ/jO1jl+j6aIn0dWT0HqoQsC1HJkxD3flxdS CcWwWhH09+fvLFOeUthkU0YFIdwVYaD04JR+6N0ev+TtYFB0jS+5RIM3NvcZvPIc z0/jitNZZz7l3M+4zXfMXX4atUuRyXD71EEzrUNGtB2elOzRv3WP+rXJ6mZAhP+g S0w7Vmk2fqL1rfJpa6WNZn0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 397821549455403400412086836165208117887151 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-22 20:31:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-20 20:31:37 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'carpignanosalentino.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 716919595670428552039570860605924946278614750473959137744883098528381752955778048106950010933317687465147508604284016631694660870326688558450505853309431388155521590077361696283011712565229693799335862869303918298687312161374837938273115961027564733285390043735167171144759568032468132069810722040612310669015951381192690968241245006860553707530704381093752330698763224964446857242656683596493406106319376232839055323498385108308696562589033387797829039540527004340944610288201029452267882253056725257480568382590259758454613347050987302238837934874218432473889712432572561914751296019808091850251677286446407042745612405979540897767214550638917956711501233424066972495694038735890058384505406676267830127692207833269664995455185576163180406718171323027316302307679613376625400407638668441070506117580560154580702602521624017040922725509227358206062462566557030045271111915475229210226072255892687698565977812731353305729329762741733464578907040351715161358762136701560133885669681457510340650741847849408496916388729990821887314202986001782440040545578824692260556263316832634947944338741131622004969432449799566523444932143448167830912295959385545520952515856631925348905251289560607066615701824486193503845601259106733455433361021 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2e17af0592df871f3eaf16650c851857f338121c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'carpignanosalentino.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018fa23783320000040300473045022100f543cb8e04150ee0b5358829906a4022449c8a5a5b2cdd184a1ce526dbb1760702200605a57fc3dcccb0fffaaf5f62dc399102ffdd65c6d97b6e5beba56049754693007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018fa237846400000403004730450220173791d850ac5b9d3bf651cd32fd90a021e7cd7cbbe43530ad861bf16b7bb2fe02210083eebeb6b1ad24cc134921c87136b1180f93bdcea7f30b6103283f9c4d46e0b7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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