DV SSL/TLS Certificate for gitesdechatillon.fr

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the gitesdechatillon.fr DV SSL/TLS Certificate

This certificate with serial number 06:2b:5b:39:30:1f:a2:a5:df:f4:13:c0:2e:24:05:97:69:16 for gitesdechatillon.fr was issued on by Let's Encrypt.

With 3 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for gitesdechatillon.fr provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:2b:5b:39:30:1f:a2:a5:df:f4:13:c0:2e:24:05:97:69:16
Serial Number (int): 537427114052761268753441401367483957864726
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 25:ef:a1:52:ab:38:96:a0:f3:db:42:b7:e9:0a:0a:4c:b9:b9:e0:bf
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): ae:ae:3c:31:22:cc:63:08:f2:e7:01:70:03:23:97:97:91:e7:fc:cb
Fingerprint (SHA-256): 1a:b0:5a:ce:9b:2b:9f:13:9e:2e:4c:98:25:0a:2a:ca:39:f2:b0:d4:99:0b:7e:29:42:af:cb:8f:39:c6:8d:a8

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

OCSP Server: http://r11.o.lencr.org
CRL Distribution Point: http://r11.c.lencr.org/23.crl

Check the revocation status for certificate gitesdechatillon.fr
3
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for gitesdechatillon.fr

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for gitesdechatillon.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFWTCCBEGgAwIBAgISBitbOTAfoqXf9BPALiQFl2kWMA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTEwHhcNMjUwNTA1MTEyMjE4WhcNMjUwODAzMTEyMjE3WjAeMRwwGgYDVQQD
ExNnaXRlc2RlY2hhdGlsbG9uLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1P8NwWPfmwqFX1Gq9YeNkeo9WDkC4gpV23R31PGWe/ARAe8C3J1ONtKw
5S/l+FdpHMNcfuij5FpJwYMujFeZIOrNmkq1ccB2bWubenRIaz95pWRDI+2GZaZp
mhwCbBMyeqKuHdFz1MoU/yd4vIXTac5/xH1jo2k6ZnmHtNVNVvkZxHm8NC3Q/qVO
iMurkmvsu0Ux9HaQerkWaoLfodFqTBgsE5n9e7Yn/0MPi4YyTNkPRE3wrUzBz9tL
8gBAqBvpqrXUY3f9aMxEAi/5W7TUkMinB/xcBtM2FamMmssZbF8cci8L1kDhlDjl
dgs3Mn6RxL6Tpv/bFxniNF4z2Jx5AwIDAQABo4ICejCCAnYwDgYDVR0PAQH/BAQD
AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA
MB0GA1UdDgQWBBQl76FSqziWoPPbQrfpCgpMubngvzAfBgNVHSMEGDAWgBTFz0ak
6vTDwHpslcQtsF6SLybjuTBXBggrBgEFBQcBAQRLMEkwIgYIKwYBBQUHMAGGFmh0
dHA6Ly9yMTEuby5sZW5jci5vcmcwIwYIKwYBBQUHMAKGF2h0dHA6Ly9yMTEuaS5s
ZW5jci5vcmcvMFEGA1UdEQRKMEiCE2dpdGVzZGVjaGF0aWxsb24uZnKCGG1haWwu
Z2l0ZXNkZWNoYXRpbGxvbi5mcoIXd3d3LmdpdGVzZGVjaGF0aWxsb24uZnIwEwYD
VR0gBAwwCjAIBgZngQwBAgEwLgYDVR0fBCcwJTAjoCGgH4YdaHR0cDovL3IxMS5j
LmxlbmNyLm9yZy8yMy5jcmwwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgAN4fIw
K9MNwUBiEgnqVS78R3R8sdfpMO8OQh60fk6qNAAAAZagZEgUAAAEAwBHMEUCIAS9
Q9/aYOBdk+rpBYPGGN53JTAIZQ+3uVLqlqyPyTG/AiEA/xFwSljO06LYQ1OEzGeP
VBdeIIYLMy+T28RoE/nE/dMAdgDd3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgos
rLvIKgAAAZagZEhXAAAEAwBHMEUCIQDOsesBfRW0duv9xiKryEVPoanEsgIMJ20i
J51Sr92ROAIgMMVlcdRUHAo8njPZvdMMjOXhcuctp2HSqhf8ZuD9W7MwDQYJKoZI
hvcNAQELBQADggEBAB8gP3j6bTjZotAHF3XK4jiI7NfUD8bQWWikhHJsfcOepeKE
fqXdDkBpvMBD3nj/HqzfTTztBTJ3GiLVd3O+Uw60D5CZOQoE7Coy8rP6FBGVPxSm
n79nNm023ptqBDiUdHvcrxYyO9sVP6y9uyK83DczbbvmBndU84kt4/46kPFiMLkK
cdSp+2dRAaVx54uDIqTKFVBOrdimVQlGcF1Zlz5goZ1ORaTkjRUWXqLn2WbM1Jt3
7wWOZ8LTaYhOYOmtJ70uWpqC6vJWBZGCMQJOHrYwDRyoFMEpb82IXx2dtXOBq1AW
b56CgscxpDDPP/ns9UbT05Eeui/koBi1S+AdCo0=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1P8NwWPfmwqFX1Gq9YeN
keo9WDkC4gpV23R31PGWe/ARAe8C3J1ONtKw5S/l+FdpHMNcfuij5FpJwYMujFeZ
IOrNmkq1ccB2bWubenRIaz95pWRDI+2GZaZpmhwCbBMyeqKuHdFz1MoU/yd4vIXT
ac5/xH1jo2k6ZnmHtNVNVvkZxHm8NC3Q/qVOiMurkmvsu0Ux9HaQerkWaoLfodFq
TBgsE5n9e7Yn/0MPi4YyTNkPRE3wrUzBz9tL8gBAqBvpqrXUY3f9aMxEAi/5W7TU
kMinB/xcBtM2FamMmssZbF8cci8L1kDhlDjldgs3Mn6RxL6Tpv/bFxniNF4z2Jx5
AwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 537427114052761268753441401367483957864726
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-05 11:22:18 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-03 11:22:17 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gitesdechatillon.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26888292335702019897721887537092678171363519480065765138978547235624588113575407896377539548502768950569643810656640931861590037655939108364775869942711863368279703739849745410350909563114674462672260238349642805815326936493390492991927181246332662388122237466040970999735243323976349326526714833215503117115862147749873674088633112966173890496069739232957907516969515397988242225477283834990781719849741601415386991457593330689990561217324797054433185343767694632250561788151288183635630021207375868674099122493974335017587358291193679196797301349637587597220493554068643924958276199006564729814256156412128182171907
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							25efa152ab3896a0f3db42b7e90a0a4cb9b9e0bf
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gitesdechatillon.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.gitesdechatillon.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gitesdechatillon.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/23.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa3400000196a06448140000040300473045022004bd43dfda60e05d93eae90583c618de77253008650fb7b952ea96ac8fc931bf022100ff11704a58ced3a2d8435384cc678f54175e20860b332f93dbc46813f9c4fdd3007600dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a00000196a06448570000040300473045022100ceb1eb017d15b476ebfdc622abc8454fa1a9c4b2020c276d22279d52afdd9138022030c56571d4541c0a3c9e33d9bdd30c8ce5e172e72da761d2aa17fc66e0fd5bb3
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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