sambuceto.org

Issued by R11

About this certificate

This digital certificate with serial number 04:7b:91:49:fd:2e:e6:b4:66:a4:b0:e0:16:55:cc:3f:fb:17 was issued on by Let's Encrypt.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=sambuceto.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:7b:91:49:fd:2e:e6:b4:66:a4:b0:e0:16:55:cc:3f:fb:17
Serial Number (int): 390496997090541428279633218753521956944663
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 8c:5f:d1:9d:29:ef:1e:10:77:ab:5b:4a:de:df:e1:6f:8b:07:19:4f
AuthorityKeyId: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (sha1): db:27:22:f7:06:68:60:0d:3f:93:8b:13:1d:0f:3f:fe:db:31:76:98
Fingerprint (sha256): fa:04:8f:ae:9e:01:9a:da:75:41:6c:3f:08:5c:97:f8:59:79:36:3a:96:03:28:aa:ef:80:a3:18:c6:c4:60:d3

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation information

OCSP Server: http://r11.o.lencr.org

Check the revocation status for certificate sambuceto.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for sambuceto.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

sambuceto.org

Other certificates including the domain name sambuceto.org

(limited to 100 certificates)
sambuceto.org
sambuceto.org
sambuceto.org
www.hotelsbasilicata.com
sambuceto.org
sambuceto.org
sambuceto.org
sambuceto.org
sambuceto.org
sambuceto.org

Certificate

The complete raw certificate details for sambuceto.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 390496997090541428279633218753521956944663
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-09 16:37:11 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-07 16:37:10 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sambuceto.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 642974101477749149227906601882184595674288412582612721728006019590355770755684460360041387074532376583551947575904880360419803561184819434655254419046160112489240229473576237669842066448421454507109581011778529784079366337062839493601120252334855645708609245476085040892491237508673120591378268734990350613572965410072550651480987931702882378331997301888288823666267027105733039124542142786079313218260738958226912487609313196417524067491561759960865844893807851014708103362692618478558401161450594231608643684840462640962200892655798133042746762007476627647079705558564559901779100851647743443552478172616072657049460447245335918265778007082582517031688974789099546415383770330176865720404384096137477357239184391633590578981103852892359536174245265153625210193451847890390408182727228040492352705912322278911810984074035299733148552699469093131621232386073021560610370829091736143770574931522242951928222365457002117784253269945485466777555208884703707790904838530919295357105884046885353609683115507826854181008247621441049160471942544402278706267041966826335784585822946413102434267111962871635583636611250034863885596091339256077660158236170085726663152312194219732879201190533567981319306671220107174129844651954837801033806547
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							8c5fd19d29ef1e1077ab5b4adedfe16f8b07194f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sambuceto.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00075001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018ffe1358050000040300463044022071e6a090e0a08a4ea101f349f94e6c31384e74c199656a98e1be17845dcf53ee02202649aa4689864f556d025becf91c0176b319a8db3eac03e484e78cfe9c6261e900770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ffe1357fd0000040300483046022100f4d78284f1a8f94d747070444eb457373b8ea95f79aa2eb53dfa9ec7c56db2f9022100ebb77ee3a830dfa55d5b2d08381aae0c1ed647d99f8e950b9aaed3dfeb795e57
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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