borgocampo.it
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:34:36:22:d5:df:55:c0:a7:e9:4b:04:cd:47:03:3d:18:15 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=borgocampo.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:34:36:22:d5:df:55:c0:a7:e9:4b:04:cd:47:03:3d:18:15Serial Number (int): 279103500062882780632260981315510948665365
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e2:ae:5e:8b:59:63:19:90:44:e6:39:f4:ed:ea:90:66:06:13:bc:d5
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d5:38:f2:8d:e1:ee:4b:d7:34:8b:e2:dc:b1:8f:f8:b8:a3:cc:40:23
Fingerprint (sha256): e7:f8:54:66:dc:c0:59:db:8e:ce:ef:c6:26:30:97:a9:a7:f7:41:92:bb:7f:cd:dc:8e:51:06:68:15:28:7b:89
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate borgocampo.it
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for borgocampo.it
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
borgocampo.it
www.borgocampo.it
www.borgocampo.it
Other certificates including the domain name borgocampo.it
(limited to 100 certificates)
Certificate
The complete raw certificate details for borgocampo.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGETCCBPmgAwIBAgISAzQ2ItXfVcCn6UsEzUcDPRgVMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjEwMTcwOTU1MDBaFw0x NzAxMTUwOTU1MDBaMBgxFjAUBgNVBAMTDWJvcmdvY2FtcG8uaXQwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQD036B1c399q2Q9+JZqsPM2i8gsKEN6buK/ YT1JpdyLGa/oRNr9VMwcqm4s0lwqsJ4cm3xS3v4r8DscbfHImaxHE7hADHEDcJBp oIbJbrCMmt5HOgxAVX78Pz26FTxL4CllAhiw1YOjTQWd5xHg2JdF5rx9f2f7fPAH OJFfs2/bA9TQ6FMqv4bpivgqaMWsQRN1Ec8Lhp/iQZVGdT3pITE13QOWiXOlcGIG bofYtE5iTWVBKRKQQvAARojFssMg2tHHZFv2qxyA9gaCo/vzv73RiNMV8UZ5V5hl BUWKxeeTlqSxxkksoVkeVWLl+L8LdfPndPV4LMh3rwtyQqWRu79fb0T3d46p5OVy RQevG0m0ZKop54t0WtF8mwx+rWjDEW/bRojXT+KVfaQhpUvhRsCrZpavCZuyLBer jJvjXsdA2WLSIN2AwlKE0d0QfyoQWQvG1G8W/L/wBfxF7ev/dTrQidzYl7CywcjV rwezMa201qVj546vpW1GjS96u4M69O2v3rEyaHgSL6lDXB6uR9Hs4q6xgMXahdwm j9vkXVKTTLaLfP0KfOyoaB1+Be9pqYwF/rt45pZuR5T8K6K9zcl/LhiYoEpBfHHg 5VLvKhEweWLsLKRQO69xXiCNNDO3kyjBsXXWMuD3ubvzPp6fOmQL5eifxwz5SzD5 kdu5c6vrnwIDAQABo4ICITCCAh0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTirl6L WWMZkETmOfTt6pBmBhO81TAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBwBggrBgEFBQcBAQRkMGIwLwYIKwYBBQUHMAGGI2h0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcvMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzArBgNVHREEJDAigg1ib3Jnb2NhbXBvLml0ghF3 d3cuYm9yZ29jYW1wby5pdDCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYB BAGC3xMBAQEwgdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQu b3JnMIGrBggrBgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkg YmUgcmVsaWVkIHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFj Y29yZGFuY2Ugd2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0 dHBzOi8vbGV0c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMA0GCSqGSIb3DQEBCwUA A4IBAQBh7WkXvQKknMYyRMTvYFtDpGTW5H8p1QEuHjVgW2q3W/MTbxxMZS9a4yD4 Ya0FdZ4Iky791aZ68ibe1kN1MFimhmpbKwsBMwxO3U3PS/DpqZMRpKM0I98Shjqi JRAFe43fCDXkCYahrofm5R4cSb3uA4sEHUGc/PuFwwRPQAsjRLxW8Kv5vbizCJm8 Zl3xtu/Wzzd5GI/K09SC+Z9K+x1KclcbLu/jzGqTZw6mR9cmi1+E4Djv+Pq23zeS hYxz/FV9pVCHJd6X+lQDZbOC+sx+HcQd7qCuRq8QT/xN2GFgR3KSMWeyGiYbC986 Ppo+lDbFhualVPIH2IF1S5s1+A6u -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA9N+gdXN/fatkPfiWarDz NovILChDem7iv2E9SaXcixmv6ETa/VTMHKpuLNJcKrCeHJt8Ut7+K/A7HG3xyJms RxO4QAxxA3CQaaCGyW6wjJreRzoMQFV+/D89uhU8S+ApZQIYsNWDo00FnecR4NiX Rea8fX9n+3zwBziRX7Nv2wPU0OhTKr+G6Yr4KmjFrEETdRHPC4af4kGVRnU96SEx Nd0DlolzpXBiBm6H2LROYk1lQSkSkELwAEaIxbLDINrRx2Rb9qscgPYGgqP787+9 0YjTFfFGeVeYZQVFisXnk5akscZJLKFZHlVi5fi/C3Xz53T1eCzId68LckKlkbu/ X29E93eOqeTlckUHrxtJtGSqKeeLdFrRfJsMfq1owxFv20aI10/ilX2kIaVL4UbA q2aWrwmbsiwXq4yb417HQNli0iDdgMJShNHdEH8qEFkLxtRvFvy/8AX8Re3r/3U6 0Inc2JewssHI1a8HszGttNalY+eOr6VtRo0veruDOvTtr96xMmh4Ei+pQ1werkfR 7OKusYDF2oXcJo/b5F1Sk0y2i3z9CnzsqGgdfgXvaamMBf67eOaWbkeU/Cuivc3J fy4YmKBKQXxx4OVS7yoRMHli7CykUDuvcV4gjTQzt5MowbF11jLg97m78z6enzpk C+Xon8cM+Usw+ZHbuXOr658CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 279103500062882780632260981315510948665365 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-10-17 09:55:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-01-15 09:55:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'borgocampo.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 998996893675412033689814211335593151739898426238506350832817245911207796659076958781585182559135075099816908667456909080485675411629694373198746137301507958085650062824639977796981920326727939669495126692782961654861052437950971827592711584739741550622748790118635357955297965435880734268761613082369909047417726239261440551683341839069628787916919216663262181543442728290414812163943406002323337590842019882649719498411234961256748793321225641100136384452627906317729971200162539514181713977736378781921486581536252759068710763919746955809007456755391330894734113598253288847236783286346575388275149494015647252860079874547269998454904158694789448201910464467779477202334460109076413389235466170704387946936162773554568237323192285350281000408400147824309450333035563923627828710147857703141608529907952728444418974239555321236111828569525123473643605329344197724523764986535213023955625346540951140209786238532435515511970215211386180790301034275345081570319099079325386002781744199591103978402791975552389779047267291932695839918002609565800718888859563916707367783289874501125749185355567789230853594343256885770267430827387655265419756968594125139993177526569850423479019997839302264595186933094697118830601363783525370233088927 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e2ae5e8b5963199044e639f4edea90660613bcd5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'borgocampo.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.borgocampo.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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