francecheval.fr
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:44:e4:79:20:bc:9c:1d:e9:05:64:5e:d8:29:8f:3d:1b:e6 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=francecheval.fr
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:44:e4:79:20:bc:9c:1d:e9:05:64:5e:d8:29:8f:3d:1b:e6Serial Number (int): 284779751660843716678873196386343909661670
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 66:47:d9:f7:82:1e:50:11:19:a2:eb:65:e6:9a:33:f9:2e:f2:3c:5a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 7f:29:ce:29:3d:30:1c:ca:42:a4:49:45:d3:7f:60:c9:12:76:c3:6b
Fingerprint (sha256): 00:01:7b:cd:db:dd:ef:0b:a4:e1:e2:26:7a:88:45:b3:5c:a1:bd:eb:13:73:47:6f:54:c5:1c:59:98:fe:ff:da
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate francecheval.fr
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for francecheval.fr
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
admin.francecheval.fr
francecheval.fr
www.admin.francecheval.fr
www.francecheval.fr
francecheval.fr
www.admin.francecheval.fr
www.francecheval.fr
Other certificates including the domain name francecheval.fr
(limited to 100 certificates)
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
www.francecheval.fr
francecheval.fr
admin.francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
www.francecheval.fr
francecheval.fr
admin.francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
francecheval.fr
Certificate
The complete raw certificate details for francecheval.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgISA0TkeSC8nB3pBWRe2CmPPRvmMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjA1MDcwMjE1MDBaFw0x NjA4MDUwMjE1MDBaMBoxGDAWBgNVBAMTD2ZyYW5jZWNoZXZhbC5mcjCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAMRqtpw2nsphqWglN9Nzh1IjJg1daCYI HaLoQE6Qs3CZaHFj5T0UPOwgxqTXYDcsN5YFCPugW1INBcOnZcE19fqk1p4jB14J V131TjvHil/FZnG19zsmkLxwX4tbImbJdNwPJZJt8hhLi6dAoa03m5u68kSiSsVl NR984R57JDkLAQoM3aVjHXeC/GsKZBqOLJLdApH12IZD0kgTyovLzs35E8Np/foF +8aFVGuD71Zk+5YmpAChqGadkxj6mRFkRSXj/yrS5rJgrmYhJzmdAtEfcSXrGVpg ZcnULKKzyXM+K3s9alTRKf992Hrc1eJ09ounC1kiQsYLFDqPQ3SR7hmOFgAXVGox /Glet7T6qSSviZwHN8lJpRDZIoalznkOfaQ+WvDaVw8Qu21DSvFqJlA1Y7rQ5HHF fTsrrzwJZ6ZfGqy5XX/p7KOWWN2srRh/bKzO005YHttiVg468DWuokBgrdRCJTGL 93Vo7tPv06Tu3F3JCEgTh/Yuv9rQwLqa9IgVFfvyFXBfsQCkhk7GvtRyJg8NZurl shGByo3wdcV6PBFKzDUSoN/vW17uWOEU9CMECrkHRK0NWD1EAbHRw4Q9lLyMe9it hekxlRCnCrsTOmASkiB1NY/1/suAz84oZdxV95YIp8y8VjvzLswKR8UUT2DUr5VU xuaCgiKAl8n1AgMBAAGjggJXMIICUzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFGZH 2feCHlARGaLrZeaaM/ku8jxaMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMHAGCCsGAQUFBwEBBGQwYjAvBggrBgEFBQcwAYYjaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMGEGA1UdEQRaMFiCFWFkbWluLmZyYW5jZWNo ZXZhbC5mcoIPZnJhbmNlY2hldmFsLmZyghl3d3cuYWRtaW4uZnJhbmNlY2hldmFs LmZyghN3d3cuZnJhbmNlY2hldmFsLmZyMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIB MIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRz ZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBt YXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9u bHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91 bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZI hvcNAQELBQADggEBAG3sGtH9ogCCX+8dk2f0EeQwmsvyxTQ3WlCPEsz04zeZFXbK RGbkYArcVA7mE8KxRr146q5FVT4P2kh1c7Zj1tJyKEwJhSnS9kCfJkRoP977E2vT 6A1gBTclF0wrDXmpnMOVuqKZIDhteLuvFYssd5AM52209BpjZUPMv8nOouEHX2WI QnyeQWhmiiwHTv7Ygbamdgo5peyrrzpRblfT62UEi3CtpRRuhaVeXDDwRLqliVv7 CEIwd1o6Caa7LVyqWs0UMiTnbZgU0/iyK5b4E9mevU4Cy8cm/lu3p+EirlgsZbtu dOYQT0WxMSK6dsQeLuNhRTgihaVhT+FG1R9+0kk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxGq2nDaeymGpaCU303OH UiMmDV1oJggdouhATpCzcJlocWPlPRQ87CDGpNdgNyw3lgUI+6BbUg0Fw6dlwTX1 +qTWniMHXglXXfVOO8eKX8VmcbX3OyaQvHBfi1siZsl03A8lkm3yGEuLp0ChrTeb m7ryRKJKxWU1H3zhHnskOQsBCgzdpWMdd4L8awpkGo4skt0CkfXYhkPSSBPKi8vO zfkTw2n9+gX7xoVUa4PvVmT7liakAKGoZp2TGPqZEWRFJeP/KtLmsmCuZiEnOZ0C 0R9xJesZWmBlydQsorPJcz4rez1qVNEp/33YetzV4nT2i6cLWSJCxgsUOo9DdJHu GY4WABdUajH8aV63tPqpJK+JnAc3yUmlENkihqXOeQ59pD5a8NpXDxC7bUNK8Wom UDVjutDkccV9OyuvPAlnpl8arLldf+nso5ZY3aytGH9srM7TTlge22JWDjrwNa6i QGCt1EIlMYv3dWju0+/TpO7cXckISBOH9i6/2tDAupr0iBUV+/IVcF+xAKSGTsa+ 1HImDw1m6uWyEYHKjfB1xXo8EUrMNRKg3+9bXu5Y4RT0IwQKuQdErQ1YPUQBsdHD hD2UvIx72K2F6TGVEKcKuxM6YBKSIHU1j/X+y4DPzihl3FX3lginzLxWO/MuzApH xRRPYNSvlVTG5oKCIoCXyfUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 284779751660843716678873196386343909661670 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-07 02:15:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-05 02:15:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'francecheval.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 801310832517543846179519535236234370864145965658886212998103580234279296914207114734549117600498528074083967057850584778373663596208871111225413824451973163372119455744361842487133917456427360407342906293490591646763610693137866062707971376095589897102876274285054328064551309023225198755748879935366310477151187186715271279005373861028833145545189568385242117543346910167425728013630418742269663295389909103571189211337187165707959605791762191068917816865511572570353709324962621926250473689410597773792658236300283783290247767886401053961451158235126743600416025746599693976270956423517015863514546173650058938861213931393736496170117966443415712284033097672168812915207837738589571598766817935637769514678315550507171476201515425158825681497573533079578399653881266164855950012497045045072548012166973094491684114475117065513028376229323047221653329069930684634929993062057227498781810618569059013025682725804753785213339715543667711733332472867242428793784771321660013500492030511210710218036555786366513800009796896781353185667718395175193071111268053707605798864880628338777357323979272689851841909990925742876771197909058623546791945663654107736922327203179312656383953379897925597748506758114905177691299710560179523444787701 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6647d9f7821e501119a2eb65e69a33f92ef23c5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'admin.francecheval.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'francecheval.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.admin.francecheval.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.francecheval.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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