www.sportelloamico.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:c2:03:03:e9:c3:48:13:d4:62:3b:8c:67:68:0a:dd:a0:8e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.sportelloamico.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c2:03:03:e9:c3:48:13:d4:62:3b:8c:67:68:0a:dd:a0:8eSerial Number (int): 327355644980093968438240199701213826883726
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b2:92:0b:9b:43:a4:6b:8a:17:0d:14:b7:6a:55:f2:b8:31:34:aa:68
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 15:8a:d4:1f:d9:b0:2f:b7:4e:7a:05:b7:45:2a:4c:78:fa:b1:4f:ef
Fingerprint (sha256): f3:26:d6:33:66:2c:0e:4b:a9:e2:7c:a4:68:a6:ac:46:af:7a:c4:59:3d:f0:fc:c3:1e:28:fa:61:ce:d0:e3:a6
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.sportelloamico.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.sportelloamico.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.sportelloamico.com
Other certificates including the domain name sportelloamico.com
(limited to 100 certificates)
acqualagna.org
www.sportelloamico.com
www.sportelloamico.com
stemcellparkinsons.org
www.sportelloamico.com
sportelloamico.com
www.sportelloamico.com
sportelloamico.com
sportelloamico.com
sportelloamico.com
chemare.com
sportelloamico.com
www.kadams.com
sportelloamico.com
sportelloamico.com
poltronemassaggi.com
www.sportelloamico.com
sportelloamico.com
www.sportelloamico.com
www.sportelloamico.com
stemcellparkinsons.org
www.sportelloamico.com
sportelloamico.com
www.sportelloamico.com
sportelloamico.com
sportelloamico.com
sportelloamico.com
chemare.com
sportelloamico.com
www.kadams.com
sportelloamico.com
sportelloamico.com
poltronemassaggi.com
www.sportelloamico.com
sportelloamico.com
Certificate
The complete raw certificate details for www.sportelloamico.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZTCCBU2gAwIBAgISA8IDA+nDSBPUYjuMZ2gK3aCOMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjcwNDA4NTBaFw0x OTA4MjUwNDA4NTBaMCExHzAdBgNVBAMTFnd3dy5zcG9ydGVsbG9hbWljby5jb20w ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC971c0nNTqTv5araWMEHnn 3NfTi9dW77ZWnh2TSz+cGnCWJel//Udz8Cc4NO3OcziZCbAyNndYhb6dc4yiPgth Q1p+Kuj/X/njlZ/cCHrxXtOWeAb+didF4/cJxxmuW7QzIem4e4NdL3de2d2ZUyVv cz+78cx+o6eyP4vFVyhaIHEEIN0/YPqFJcdUDb4lcpbM5QpXcjo3O3uvBUqY0dAl m7O5gMZ+mCdok2OPELwduTIDbFfC5hq2yqU3Wci/FUu2t4EaCLkqNlJxEdneeEDH 4Or9XtIw/5YlWQUsNJGuT7bkYtLQ113tBxHihdiP+OKQTW/GNfSjkWtE85F7Sf7v yPSsYWmYPLXyeZ8dA9o+YrE52NR87gRvGsuR9Ch2GGFCad+0WtqmSi7CyTMfWmLU rV7ZJ6w+y0TUCF7WglAzfB5ZRhnvGVvdlBH2jK7SS8Hn1nNgSqaL9NIAC4RIi0qj Azrr62xTlyzRjxTp6+3CjJ1SrXeleyLsu+0tZWFtKeXIupRBZLRLdFA9FDpFsnJ9 yYlw5R4TayLa+aY8DALC1CLL+Q+i0fmbNpkjDKXUUwsJ+NL7Vmu15/vaq6TLV3x+ /MUqT10q6JBld40ev2AvEsv6TxPwHtnZ+C9juyK5KGOfm4C3xBtY/9SkznYarUoF gK1hzQkOv3qArrYyV24ShQIDAQABo4ICbDCCAmgwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBSykgubQ6RrihcNFLdqVfK4MTSqaDAfBgNVHSMEGDAWgBSoSmpjBH3duubR ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEGA1UdEQQaMBiCFnd3dy5zcG9y dGVsbG9hbWljby5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEF BgorBgEEAdZ5AgQCBIH2BIHzAPEAdgDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8o kwGd3fHb/gAAAWr3sPhRAAAEAwBHMEUCICKSZ7OunLTdsrnrFESNWSLuCnRbSpmV Y5Zlxs60YIiJAiEAoBxTFgCC5aStQ125H/+LqxvEXkGDtvP74rJSLGJYz5cAdwAp PFGWVMg5ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAWr3sPhqAAAEAwBIMEYC IQDdVZUEKAXqYzdhCVXYIDtj7EgyEGOcpzZxsChZ6v+5ZAIhAPzN3k+zprw5oBvl FvINWYrFKxuYl9998Jx0oh1GxkOsMA0GCSqGSIb3DQEBCwUAA4IBAQASB0coNIMW mkN7TmW9Z0j5AslKswsz8nFvuseTft5UkLEPMEKcnFywgTyF3mvr4ImzL7ZQ1Fyx ckCnNPJ0nl30zucE/0tkZA+Dgm9XDBVd4EYHOaamW2YC0Vx1ZZGONl/6Binw79S8 lAxUOB+lRZpcpwkMMOw/xHIrp76OGvUIv73gxlb+RWo6OGjRoALVRm1e1PEWX/Uc DdPzS3nQHacHin9tlfG4XfMNOvYMNcnFWdTQx7qrqCZTuz3kDAwRW3Uw5vEOAHJY 96WF6MyqwDizB9Abbs5hmuU+2OK8P/Sh/vHgFD8zBAxxyqut2UGBaf+6UyOkyrQd eCUAYqwoLlTS -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAve9XNJzU6k7+Wq2ljBB5 59zX04vXVu+2Vp4dk0s/nBpwliXpf/1Hc/AnODTtznM4mQmwMjZ3WIW+nXOMoj4L YUNafiro/1/545Wf3Ah68V7TlngG/nYnReP3CccZrlu0MyHpuHuDXS93XtndmVMl b3M/u/HMfqOnsj+LxVcoWiBxBCDdP2D6hSXHVA2+JXKWzOUKV3I6Nzt7rwVKmNHQ JZuzuYDGfpgnaJNjjxC8HbkyA2xXwuYatsqlN1nIvxVLtreBGgi5KjZScRHZ3nhA x+Dq/V7SMP+WJVkFLDSRrk+25GLS0Ndd7QcR4oXYj/jikE1vxjX0o5FrRPORe0n+ 78j0rGFpmDy18nmfHQPaPmKxOdjUfO4EbxrLkfQodhhhQmnftFrapkouwskzH1pi 1K1e2SesPstE1Ahe1oJQM3weWUYZ7xlb3ZQR9oyu0kvB59ZzYEqmi/TSAAuESItK owM66+tsU5cs0Y8U6evtwoydUq13pXsi7LvtLWVhbSnlyLqUQWS0S3RQPRQ6RbJy fcmJcOUeE2si2vmmPAwCwtQiy/kPotH5mzaZIwyl1FMLCfjS+1Zrtef72quky1d8 fvzFKk9dKuiQZXeNHr9gLxLL+k8T8B7Z2fgvY7siuShjn5uAt8QbWP/UpM52Gq1K BYCtYc0JDr96gK62MlduEoUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 327355644980093968438240199701213826883726 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-27 04:08:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-25 04:08:50 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.sportelloamico.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 774866887640780241554474366045514837178585249021473840074494959542562935469385514586965710819097727198694925100767673601911841390277690468113782692923229270112803228165570627565771345466735872455947488396034712293917161655460582619806781660837233788147888505725110946806255538793989261095437287742834090297272278640136055015925233200330087386145316229000745686520312280937813142184283973596725378897674890135412773693848679071246936913594704137264774151189271194322619511356942957070425165393303478777433409433169474659381630560806850797505116932017487043387872505855093456343784012312882192959253853826159714412296753103113816221603596118891210075830031824464886543746328869448673588844878812843519987935678558578793682649087476904605360553508210355542344693128626552188818069153749536821281343675036535354043916285590017212102728316547614574986547522895285184367759274028354775362080349424707337267837556736006877310944823900885357177171418164474655990537132622268675541903133508553357454240631915402536384790927575580522936888439844045763094377248461248715978786170237155792248875311374018754023006813440816605129204171286553845190741379338644815314310740548146614637538459718167859083667757726850313509305249891972978467538866821 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b2920b9b43a46b8a170d14b76a55f2b83134aa68 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sportelloamico.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016af7b0f85100000403004730450220229267b3ae9cb4ddb2b9eb14448d5922ee0a745b4a9995639665c6ceb4608889022100a01c53160082e5a4ad435db91fff8bab1bc45e4183b6f3fbe2b2522c6258cf97007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016af7b0f86a0000040300483046022100dd5595042805ea6337610955d8203b63ec483210639ca73671b02859eaffb964022100fccdde4fb3a6bc39a01be516f20d598ac52b1b9897df7df09c74a21d46c643ac . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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