itg-dns.com
Issued by R3
About this certificate
This digital certificate with serial number 04:bf:2d:9b:ae:a1:59:ee:fd:48:97:3d:0f:99:95:33:f7:04 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=itg-dns.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:bf:2d:9b:ae:a1:59:ee:fd:48:97:3d:0f:99:95:33:f7:04Serial Number (int): 413503699416686465507067405309637347768068
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: f4:79:18:04:9c:e6:21:18:1d:54:1a:57:7d:20:a9:9c:07:36:57:74
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): fd:ff:9d:29:61:7b:0e:8d:5e:33:af:d5:79:4a:c3:5f:b4:6a:04:e1
Fingerprint (sha256): c4:7b:24:11:92:95:0b:f0:38:9b:6d:9f:0a:e6:f6:de:73:46:0e:87:d7:a8:8d:ae:6b:5f:b9:af:e0:bc:9e:48
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate itg-dns.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for itg-dns.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
itg-dns.com
webmail.itg-dns.com
www.itg-dns.com
webmail.itg-dns.com
www.itg-dns.com
Other certificates including the domain name itg-dns.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for itg-dns.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgISBL8tm66hWe79SJc9D5mVM/cEMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA1MTIxMDQ4NTVaFw0yMzA4MTAxMDQ4NTRaMBYxFDASBgNVBAMT C2l0Zy1kbnMuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy2sm tqwBTKrp5HH0tLGoGMgZ6e9c5p0+U3d+vHZihqbL3hK0oKyOyWXH8cTRu/1g3HmA j2J7IeagA3za6WQakoA27mexIBwSpsAkcNqcAGVoiTXVAu/D/9oYV2wMqp+3nqca 0iycnH3GKxUl+xpQuL0PQJ0+gpOMNryYIOpaUzUxIR1z3F3tU76flsMvEpTv88fe hs9fTpoFtFrRKSeeyeSbfkUBdEygMJ/BuhcWD/U20088h7b8MgeoKEtfKSxoUDTX MGXklIHn1Mmk+vNIVMw1rlbiAXcI6DEVTst0kvcrGne3YJm2ph0b66lp9m4uulSA J+c5BSrtADOZYn4jYwIDAQABo4ICbjCCAmowDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBT0eRgEnOYhGB1UGld9IKmcBzZXdDAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDm H6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5v LmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzA8 BgNVHREENTAzggtpdGctZG5zLmNvbYITd2VibWFpbC5pdGctZG5zLmNvbYIPd3d3 Lml0Zy1kbnMuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBgYK KwYBBAHWeQIEAgSB9wSB9ADyAHcAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6 V6NS61IAAAGID8rlFAAABAMASDBGAiEAgCre3ldfFh+XKsrOoKp/jZJkIMtn0s9b 2ofnFuN55LECIQCyiD75/TjSPUcy5Mrsib1A1eJhysKtU0bG0OAWOON5cAB3AK33 vvp8/xDIi509nB4+GGq0Zyldz7EMJMqFhjTr3IKKAAABiA/K5SQAAAQDAEgwRgIh AKCocG99uhrreYxxmi+DA1Zv/981D4/YFgmJu4avY2hEAiEAhJ58yHrwBbFU8ffA kOFBvtARml9LSa1R7i9thlFPfZIwDQYJKoZIhvcNAQELBQADggEBABYMLOLZGlfx DyQmHz6fyGwM+ttYcjUeeSOCmHpJ2KhAlHEeX2BWntp/IVCeKuvXQSQRBx15vYE0 AyHFc6PiX91YKHeuwLMJEbXFsZDLt1ocT89EY6mCQOs/2fULIUW50oUkxlM+DNMQ /PoE/yt07eXK63AtTCJdw6/si2TKMtwuZZ8fJp/MuKzcqgEue7r6VULOlCaeNqAv Xj6tGy7P32JMKs8uxkS8ApK5+6iB2wNiCEg79ICc7GoICTlhY1KiH9mtGOmbNE2s YMqdL9l1falcsvMTwZhPdhI5C+ebMEBer2lMCkVETFmI9CgP0Mh0+ePputq//bhu y69gvqN3iEw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy2smtqwBTKrp5HH0tLGo GMgZ6e9c5p0+U3d+vHZihqbL3hK0oKyOyWXH8cTRu/1g3HmAj2J7IeagA3za6WQa koA27mexIBwSpsAkcNqcAGVoiTXVAu/D/9oYV2wMqp+3nqca0iycnH3GKxUl+xpQ uL0PQJ0+gpOMNryYIOpaUzUxIR1z3F3tU76flsMvEpTv88fehs9fTpoFtFrRKSee yeSbfkUBdEygMJ/BuhcWD/U20088h7b8MgeoKEtfKSxoUDTXMGXklIHn1Mmk+vNI VMw1rlbiAXcI6DEVTst0kvcrGne3YJm2ph0b66lp9m4uulSAJ+c5BSrtADOZYn4j YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 413503699416686465507067405309637347768068 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-12 10:48:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-10 10:48:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'itg-dns.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25679214146392487194423789823968771528652653128497660195300686277039922869279999806706464595491852506792991716662656504364233276876702727184260457796814560159218326168506939348579122070545243752577251824540406858632131336168565007070843828450726760306766988337248684764546882683091216126393416818794792967374191201518999059858482694406858928893413705369405809491451063468332814569417572566042264474030102732760888359917421508768556786507882387254751944988528654655740813939076487128344543860554864764852891315733044280594083443476544353296283619665057157100206924668810511088953870642830213282294402427362985446876003 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f47918049ce621181d541a577d20a99c07365774 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'itg-dns.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.itg-dns.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.itg-dns.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb52000001880fcae5140000040300483046022100802adede575f161f972acacea0aa7f8d926420cb67d2cf5bda87e716e379e4b1022100b2883ef9fd38d23d4732e4caec89bd40d5e261cac2ad5346c6d0e01638e37970007700adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a000001880fcae5240000040300483046022100a0a8706f7dba1aeb798c719a2f8303566fffdf350f8fd8160989bb86af636844022100849e7cc87af005b154f1f7c090e141bed0119a5f4b49ad51ee2f6d86514f7d92 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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