j2.res.24o.it
Issued by R3
About this certificate
This digital certificate with serial number 04:05:42:0b:33:e8:77:d3:7e:16:ac:cc:e3:8c:b8:70:80:82 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=j2.res.24o.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:05:42:0b:33:e8:77:d3:7e:16:ac:cc:e3:8c:b8:70:80:82Serial Number (int): 350238342777453835119025689630133946712194
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e3:af:d2:71:9a:23:49:ea:b6:1a:c8:a7:ff:23:d4:64:8f:5c:f0:f3
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c7:1f:6a:ae:a1:77:05:0b:ee:60:22:fa:27:72:8a:57:23:08:d6:67
Fingerprint (sha256): dc:f1:ad:67:63:c4:af:62:c3:00:c6:54:14:d8:cb:21:eb:a5:20:2b:74:89:6d:9b:86:aa:4f:0a:cc:4d:ba:eb
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate j2.res.24o.it
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for j2.res.24o.it
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
j2.res.24o.it
Other certificates including the domain name 24o.it
(limited to 100 certificates)
Certificate
The complete raw certificate details for j2.res.24o.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgISBAVCCzPod9N+FqzM44y4cICCMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMDkxNzQ5MDZaFw0yNDAyMDcxNzQ5MDVaMBgxFjAUBgNVBAMT DWoyLnJlcy4yNG8uaXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI uCqR/BeOGl6jqNZDUVA5H5vqU+CUm7Cbah0g/4+cf79iai0nOVfBi41VsCLKrErd JRCWQzxn2DlaBtuhNyWyN0DXX6IokolSPWe0B74aB8HjOTceACRb3mQzTvHU9nx6 Qtk9MzFyELV5q7dRXYjK+YLtNFi+bTfTunQ0CeZba6ZpUqeycQ8mbZ8G8UTg2/9I iBIJ0spSc05Nc34W+V3bxJlLbrhnx66W1VCgIsMReXsA2X67rvlcVX50bUDp1WgT qtF0LZf1DThZjqaXWLVQycTiZwMDMrC93wsTLFy34OmlbmWod4YyS7qFFFC6pBsZ S/SvMotkrVtraQGcnEt5AgMBAAGjggIRMIICDTAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFOOv0nGaI0nqthrIp/8j1GSPXPDzMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MBgGA1UdEQQRMA+CDWoyLnJlcy4yNG8uaXQwEwYDVR0gBAwwCjAIBgZngQwBAgEw ggEGBgorBgEEAdZ5AgQCBIH3BIH0APIAdwA7U3d1Pi25gE6LMFsG/kA7Z9hPw/TH vQANLXJv4frUFwAAAYu1aqRlAAAEAwBIMEYCIQDzxAmaEirK39IVmNQVb6Cp/sAB F/+is/8PfaN/cUmKawIhAKpkDSkUBt8xyEdoi/eDp9otdC35n25A43IvN7SQHGZ5 AHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGLtWqkaQAABAMA SDBGAiEAsUdbYxok2mWWl0mbWOkrlevp4/UC6ESWBu92AVQeFoYCIQCFWqjBXFXa nfCe0eUcNhItYi5dOEh9OMmLey00rK0nzzANBgkqhkiG9w0BAQsFAAOCAQEAfkeh 6FRRxzqjfK/qmmqMulKDFUOrueFbVp7mgL7yM4kWm+U8+zYOHuIhy6rp/3vG6XUP nICkNdLNJ5KP5xyYXaZRLE8jfnHCMGwohMZ8CMQQkFl5wFtiBVdjqzItIWODuA9L e56+uXI2d+XIIgAN4egmcmpBtapb2Q1/PLRZnFLmGC1EnzrLsNFrroweFZooYpFi hjKSpDEE/M0Em/xvl0BktNukMebWddhZJ8TvX5u9GVzoCXVfc8OuCH6eVWuCncp9 ZVJCk09+FHxTxZ5K4Z0PEcrCIxzV+NBPGWvFNYFqpJLEL201ED5woueKw4H8ZWg1 VbRkeKh8SSZShLUspw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyLgqkfwXjhpeo6jWQ1FQ OR+b6lPglJuwm2odIP+PnH+/YmotJzlXwYuNVbAiyqxK3SUQlkM8Z9g5WgbboTcl sjdA11+iKJKJUj1ntAe+GgfB4zk3HgAkW95kM07x1PZ8ekLZPTMxchC1eau3UV2I yvmC7TRYvm0307p0NAnmW2umaVKnsnEPJm2fBvFE4Nv/SIgSCdLKUnNOTXN+Fvld 28SZS264Z8eultVQoCLDEXl7ANl+u675XFV+dG1A6dVoE6rRdC2X9Q04WY6ml1i1 UMnE4mcDAzKwvd8LEyxct+DppW5lqHeGMku6hRRQuqQbGUv0rzKLZK1ba2kBnJxL eQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 350238342777453835119025689630133946712194 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-09 17:49:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-07 17:49:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'j2.res.24o.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25338476775586073876278541795288010411080403028600008584400734707458514434607582420012344094332626247628638913761322524179838355621709706818583512385862353159386948934883640516724071802220144160504684414101787956558311781849744329034174557431587570709758304581504819066626392750738238375401444570455407436988607602331781672303973529080109823779707862421384664585707508293470322145985410337011021560038851575593329121268834647825426658997697300153507089701660834041022650001235937698056432249415032930117727794272891835322472129360405855095424628864492454067440000240255628726735527245770896697754461033829729224641401 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e3afd2719a2349eab61ac8a7ff23d4648f5cf0f3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'j2.res.24o.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bb56aa4650000040300483046022100f3c4099a122acadfd21598d4156fa0a9fec00117ffa2b3ff0f7da37f71498a6b022100aa640d291406df31c847688bf783a7da2d742df99f6e40e3722f37b4901c667900770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bb56aa4690000040300483046022100b1475b631a24da659697499b58e92b95ebe9e3f502e8449606ef7601541e1686022100855aa8c15c55da9df09ed1e51c36122d622e5d38487d38c98b7b2d34acad27cf . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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