lifeconnect.it
Issued by R3
About this certificate
This digital certificate with serial number 03:5f:27:37:9b:f1:e9:7d:be:78:7a:05:5a:bc:3b:b3:56:24 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=lifeconnect.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:5f:27:37:9b:f1:e9:7d:be:78:7a:05:5a:bc:3b:b3:56:24Serial Number (int): 293715811283872462857889583735482510169636
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e4:19:a7:bc:73:10:77:66:a1:67:d6:b0:c9:88:27:7b:30:f6:96:dc
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ee:bc:67:f8:16:fe:9d:12:92:b5:b3:6e:74:de:a9:3b:2f:78:e7:8c
Fingerprint (sha256): e7:73:47:00:80:6e:16:5a:31:53:3c:97:05:be:03:55:70:29:8e:9c:ea:a6:4c:f8:66:4a:b9:ec:a4:df:58:1b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate lifeconnect.it
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lifeconnect.it
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lifeconnect.it
Other certificates including the domain name lifeconnect.it
(limited to 100 certificates)
Certificate
The complete raw certificate details for lifeconnect.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6jCCBNKgAwIBAgISA18nN5vx6X2+eHoFWrw7s1YkMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMjgxNDMzNThaFw0yNDA1MjgxNDMzNTdaMBkxFzAVBgNVBAMT DmxpZmVjb25uZWN0Lml0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA zuin2V2e5jSI/z98e0bYegyFVok+iCGkjYejYupcBAeCgjEoRefLy5+wfJ31Vfiu X2zm1eXyxm/AxvpE5YGcwORuj3BtQJIe1dqEuX3gcnFL78pdDc2mu4FnmIQDunVY w6Hp6YgFBEq5DuP8ppoiF3mfG8T6h6Gyibn1XXMuV1nTy+cjfpVbnzzlPstZUJLf 1jiV9AZPUFYUYtuQceSoKWzTv+RqeB/rqwlF2gu1NZk1xIj78NxKI85gmdRxFhc5 VLDRqUE0jfqrH3r+dE9ez9Rye2USJlH2S/F9bWffr3Hq3FWxCOH4cLGFSHW6CIOE TGkWa2aaU09GV4mXc8hMtDO83a6EZGABcuMt80k1wTghhi2CejgpdfSvQWhnQlSI HOKTlEqj4h/ZvF1mDH85KsWq1iyweb9eRARAE1MD6gSl8yNVmAN+l+8F/93efKcw T04K6QvLn7USTyBOcHpPY6XJtmXQ6L31Znx6pwunCz/9a/sZ3T2253QhuWRG0uSP 78WWM8AMt6OdZUczsiDqpntMCWPZ8cGa1RhGRcsVZMEfIuKwWi3cwk+OkzWd+Vca nqLBKKtT2ep+BAq/EpSyY0wdAQMGOM+9y2AXb2D6rLXFZyyTXcPhn2qQUy+KTmhc HedgsFXCaAUhLQAKomPtqrF6RsIWJxfrkVouAeS04I0CAwEAAaOCAhEwggINMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQU5BmnvHMQd2ahZ9awyYgnezD2ltwwHwYDVR0j BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6 Ly9yMy5pLmxlbmNyLm9yZy8wGQYDVR0RBBIwEIIObGlmZWNvbm5lY3QuaXQwEwYD VR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwBIsONr 2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY3wWd/zAAAEAwBIMEYCIQDK gSuFfoAgxMal90MX6bIVWsQfsZmYTTmNS0dneZspKAIhAJt/44S4m6dXppwD0pKY k6t0EZw9OqZzJBTYeulpZ3peAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZ RnEftZsAAAGN8FngAAAABAMARzBFAiEAvI8G9s0fqpOWaa6zFCc80TJ3kTbUQqhl XoRbGy90W4oCIEBlBBDHzvOamIO1IQJK7PrHTu53jnUvYuYGV0FAqDINMA0GCSqG SIb3DQEBCwUAA4IBAQCTnUJZrRBxuNZ/VQrLhaeKXGoYw+1NIZhOgWcQ/XYYg0z/ iJGGFjZYFEraJIgEFkTnbqvDlga/8QKx69R5dOYMVSujNEa53QW0DDjSs6aNlaJ9 YQCeeZ8WXV6FI6vDAqSh7kcg9ZZCi5iguJgVCFJHdKlY8u/I67sADf2pc4LhTGAX 3Bt+JnLUHuJnI3teCTY4o8sTm+uaKHCvPG6S+SC/YEIZy4KhKHs9wPDXcsd34C1/ CbSphvI34BXWIgq4FOZCyViNkLdMngKecCDdV2cjezKY03h1BFng9Eu/xiQsUhfQ TMBCHu0XZ915rX8uRqgHo0Gb+QMbv8p9zci4uUQ4 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzuin2V2e5jSI/z98e0bY egyFVok+iCGkjYejYupcBAeCgjEoRefLy5+wfJ31VfiuX2zm1eXyxm/AxvpE5YGc wORuj3BtQJIe1dqEuX3gcnFL78pdDc2mu4FnmIQDunVYw6Hp6YgFBEq5DuP8ppoi F3mfG8T6h6Gyibn1XXMuV1nTy+cjfpVbnzzlPstZUJLf1jiV9AZPUFYUYtuQceSo KWzTv+RqeB/rqwlF2gu1NZk1xIj78NxKI85gmdRxFhc5VLDRqUE0jfqrH3r+dE9e z9Rye2USJlH2S/F9bWffr3Hq3FWxCOH4cLGFSHW6CIOETGkWa2aaU09GV4mXc8hM tDO83a6EZGABcuMt80k1wTghhi2CejgpdfSvQWhnQlSIHOKTlEqj4h/ZvF1mDH85 KsWq1iyweb9eRARAE1MD6gSl8yNVmAN+l+8F/93efKcwT04K6QvLn7USTyBOcHpP Y6XJtmXQ6L31Znx6pwunCz/9a/sZ3T2253QhuWRG0uSP78WWM8AMt6OdZUczsiDq pntMCWPZ8cGa1RhGRcsVZMEfIuKwWi3cwk+OkzWd+VcanqLBKKtT2ep+BAq/EpSy Y0wdAQMGOM+9y2AXb2D6rLXFZyyTXcPhn2qQUy+KTmhcHedgsFXCaAUhLQAKomPt qrF6RsIWJxfrkVouAeS04I0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 293715811283872462857889583735482510169636 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-28 14:33:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-28 14:33:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lifeconnect.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 844114304126204560075395096484055850314623170983106152063570650810772171453812960806037549606602173406616099298235916940829371974481775718332001011809329401433153464196022513050195843124318168371419476937883363167125962960125711035479371364881862194134700238528457596236769777258271002952367298922696759194969966053143650426634014776869438547942101059446864604601472672310488491752610366423704967631087997786939260629857082671398618128321428518545319907723440657452989944683487112745696686586826080283482541926641537218191195373335681423981658846940313745179287150183473418752083838184253407900093156446642771978801816439729987627768379607329495556541914978005676617456411839156462858436571022998257290541688270344345290688626416795732056443874426680254527245127190499337394211703556820880697089519568290686600505094586925236816887141790661644911745817390847059965589833564221489275388255351015185579587074730441280266657428633202628774441404747401583509265109457289142247343278279519444616821922508354767875198728719033099850039194578527249763390928295000028370102647120259070891572607186907028662405839689316144183785132023011909100325027221261524968838291144395239995418261914069155290548566894642918077615859399180132890891837581 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e419a7bc73107766a167d6b0c988277b30f696dc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lifeconnect.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018df059dff30000040300483046022100ca812b857e8020c4c6a5f74317e9b2155ac41fb199984d398d4b4767799b29280221009b7fe384b89ba757a69c03d2929893ab74119c3d3aa6732414d87ae969677a5e007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018df059e0000000040300473045022100bc8f06f6cd1faa939669aeb314273cd132779136d442a8655e845b1b2f745b8a022040650410c7cef39a9883b521024aecfac74eee778e752f62e606574140a8320d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00939d4259ad1071b8d67f550acb85a78a5c6a18c3ed4d21984e816710fd7618834cff889186163658144ada2488041644e76eabc39606bff102b1ebd47974e60c552ba33446b9dd05b40c38d2b3a68d95a27d61009e799f165d5e8523abc302a4a1ee4720f596428b98a0b8981508524774a958f2efc8ebbb000dfda97382e14c6017dc1b7e2672d41ee267237b5e093638a3cb139beb9a2870af3c6e92f920bf604219cb82a1287b3dc0f0d772c777e02d7f09b4a986f237e015d6220ab814e642c9588d90b74c9e029e7020dd5767237b3298d378750459e0f44bbfc6242c5217d04cc0421eed1767dd79ad7f2e46a807a3419bf9031bbfca7dcdc8b8b94438