itg-dns.com

Issued by R3

About this certificate

This digital certificate with serial number 04:bf:2d:9b:ae:a1:59:ee:fd:48:97:3d:0f:99:95:33:f7:04 was issued on by Let's Encrypt.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=itg-dns.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:bf:2d:9b:ae:a1:59:ee:fd:48:97:3d:0f:99:95:33:f7:04
Serial Number (int): 413503699416686465507067405309637347768068
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: f4:79:18:04:9c:e6:21:18:1d:54:1a:57:7d:20:a9:9c:07:36:57:74
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): fd:ff:9d:29:61:7b:0e:8d:5e:33:af:d5:79:4a:c3:5f:b4:6a:04:e1
Fingerprint (sha256): c4:7b:24:11:92:95:0b:f0:38:9b:6d:9f:0a:e6:f6:de:73:46:0e:87:d7:a8:8d:ae:6b:5f:b9:af:e0:bc:9e:48

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate itg-dns.com

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for itg-dns.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

itg-dns.com
webmail.itg-dns.com
www.itg-dns.com

Other certificates including the domain name itg-dns.com

(limited to 100 certificates)
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com
itg-dns.com

Certificate

The complete raw certificate details for itg-dns.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy2smtqwBTKrp5HH0tLGo
GMgZ6e9c5p0+U3d+vHZihqbL3hK0oKyOyWXH8cTRu/1g3HmAj2J7IeagA3za6WQa
koA27mexIBwSpsAkcNqcAGVoiTXVAu/D/9oYV2wMqp+3nqca0iycnH3GKxUl+xpQ
uL0PQJ0+gpOMNryYIOpaUzUxIR1z3F3tU76flsMvEpTv88fehs9fTpoFtFrRKSee
yeSbfkUBdEygMJ/BuhcWD/U20088h7b8MgeoKEtfKSxoUDTXMGXklIHn1Mmk+vNI
VMw1rlbiAXcI6DEVTst0kvcrGne3YJm2ph0b66lp9m4uulSAJ+c5BSrtADOZYn4j
YwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 413503699416686465507067405309637347768068
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-12 10:48:55 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-10 10:48:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'itg-dns.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25679214146392487194423789823968771528652653128497660195300686277039922869279999806706464595491852506792991716662656504364233276876702727184260457796814560159218326168506939348579122070545243752577251824540406858632131336168565007070843828450726760306766988337248684764546882683091216126393416818794792967374191201518999059858482694406858928893413705369405809491451063468332814569417572566042264474030102732760888359917421508768556786507882387254751944988528654655740813939076487128344543860554864764852891315733044280594083443476544353296283619665057157100206924668810511088953870642830213282294402427362985446876003
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							f47918049ce621181d541a577d20a99c07365774
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'itg-dns.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.itg-dns.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.itg-dns.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f20077007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb52000001880fcae5140000040300483046022100802adede575f161f972acacea0aa7f8d926420cb67d2cf5bda87e716e379e4b1022100b2883ef9fd38d23d4732e4caec89bd40d5e261cac2ad5346c6d0e01638e37970007700adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a000001880fcae5240000040300483046022100a0a8706f7dba1aeb798c719a2f8303566fffdf350f8fd8160989bb86af636844022100849e7cc87af005b154f1f7c090e141bed0119a5f4b49ad51ee2f6d86514f7d92
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00160c2ce2d91a57f10f24261f3e9fc86c0cfadb5872351e792382987a49d8a84094711e5f60569eda7f21509e2aebd7412411071d79bd81340321c573a3e25fdd582877aec0b30911b5c5b190cbb75a1c4fcf4463a98240eb3fd9f50b2145b9d28524c6533e0cd310fcfa04ff2b74ede5caeb702d4c225dc3afec8b64ca32dc2e659f1f269fccb8acdcaa012e7bbafa5542ce94269e36a02f5e3ead1b2ecfdf624c2acf2ec644bc0292b9fba881db036208483bf4809cec6a080939616352a21fd9ad18e99b344dac60ca9d2fd9757da95cb2f313c1984f7612390be79b30405eaf694c0a45444c5988f4280fd0c874f9e3e9badabffdb86ecbaf60bea377884c