bastonciniaffumicati.com

Issued by R3

About this certificate

This digital certificate with serial number 04:dd:a8:59:c0:5f:4c:5d:b9:c9:77:94:95:e1:e1:92:49:75 was issued on by Let's Encrypt.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=bastonciniaffumicati.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:dd:a8:59:c0:5f:4c:5d:b9:c9:77:94:95:e1:e1:92:49:75
Serial Number (int): 423875323136053615986385856474331510622581
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 63:e8:f4:f7:e4:20:59:a5:ef:dd:c1:d8:9d:13:d5:74:9a:49:af:ba
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 71:4b:b2:57:ca:b0:e5:5c:df:f0:c1:8e:dc:bc:14:62:31:f5:ce:74
Fingerprint (sha256): be:8c:31:b4:bb:64:a9:96:14:08:d7:ce:90:cc:cd:82:28:67:0f:15:1d:9b:0b:96:da:2e:f1:cd:9e:54:71:41

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate bastonciniaffumicati.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for bastonciniaffumicati.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

bastonciniaffumicati.com

Other certificates including the domain name bastonciniaffumicati.com

(limited to 100 certificates)
embeddedadmarketing.com
www.snickercomedy.com
www.i-marketresearch.com
www.poisonivydecontamination.com
www.beckycloonan.com
solomonsseal.com
www.homecolonicirrigation.com
69370.com
www.sewarddental.com
amgrant.com
spiritmotel.com
webmotori.com
pasur.com
www.maleenhancementoil.com
bastonciniaffumicati.com
acertei.com
www.dealzen.com
woodennecklace.com
www.youngsphotography.com
www.vbcomingsoon.com
fabulouslyflawed.com
bastonciniaffumicati.com
enviroheat.org
bastonciniaffumicati.com
variousartists.org
riversidepizza.me
www.xrtelevision.com
jyej.com

Certificate

The complete raw certificate details for bastonciniaffumicati.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 423875323136053615986385856474331510622581
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-17 17:01:17 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-16 17:01:16 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bastonciniaffumicati.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 923844542279553850430829468793777786954821574642144080732672750819783568435297552972069118825623563029581714280184856950997795311073109336065244556709651144975018566492171565058769915025900349866038008476457466847959269404892732306304595496760900493215975564322235811148464419997441094779764066908014035244540013385209295003097332706063025131236397481370693190226425464388952523813828432556917757647706159912674296844212429022440616959966401102931631488239241091850957702242357648068704061608268180605216711914941164357176313120799563754530091424960100426160556821191250785029009331257507895414476092368619617698625861659671261362893465812130816639090841698412245589131262248840109598528450050707796342530261021815958518338500465764122879851547529113284121621567549014810177744161193291495832162180141058454657561664091275214843401472723346789478530062821764260277506496481866877413244727578202358711259324660796930871807159239100012115525499764625420834512753179068677118951506388977375237826858053007706044437209895729607306861059250339969908123657538802542867161213490358073457131944937984994208232831804082745225446896382138284393020266719927509273672431146185215510997641501968114855641463780480918037157956431032077957843670581
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							63e8f4f7e42059a5efddc1d89d13d5749a49afba
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bastonciniaffumicati.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f20077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018eed385b61000004030048304602210092cdb0c3c4302f5234378a471fe0e5a8b488c2a217064fc34e0d7c6567a3e8b6022100b279094507257f0df8a0838f52facbdd2c39def57e5614e6b507b462ae242b6b007700dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018eed385beb0000040300483046022100c624665350c54bfd89be1187a0ef2ff3dbc2fd3fd4d19f612750d90797e07d30022100a78bc59931dec226ec3ded43cb97a453fa8fa1327842d13c1c3e2f7fcabfb2c8
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0042aa49a26580df226047bf7e9fae4ebd5cfb6f2603aefdda1a74adebf4cbadf6d5d1b2a612652f04454a4eb9b475f20a4085e39fd79eb64ba2ad8f6427f5cc1fe5da8cc128a6f6143b81ef93fba5d10630808d1f6b4ca9d2f16eb0c482e556641ae56af03a70afccb069b1ebc3fd04314f15070048c5b4a726613245c2ee9c3a54d4c7ff82d84844fd437b0846a654d11a21dff2bc62f96dca0d29c1293b2b3b8032134aa0f4d559968f07d56405b4e587eb1c324ee8dede0691df0dc02e3129ef3092c65665b106ae2cb0dae41203fb91e1233d9d44287af81670cb2e2fff0251ec2e589b378567afd26a5d54ee32f850740c26525c1ac79128ef0007292e5c