tms.opacweb.fr

Issued by R3

About this certificate

This digital certificate with serial number 04:ce:b2:b4:38:a0:1b:a3:05:40:a6:43:5f:ba:dd:1a:ec:cd was issued on by Let's Encrypt.

With 80 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=tms.opacweb.fr

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:ce:b2:b4:38:a0:1b:a3:05:40:a6:43:5f:ba:dd:1a:ec:cd
Serial Number (int): 418784849657938558336054796104323762416845
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: a1:08:5b:74:71:72:ee:7f:ae:7d:19:6c:56:09:d7:c7:53:bb:f9:4a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 95:4c:b0:28:7a:5e:9c:c2:9f:d0:fd:ef:2d:fa:8c:48:a9:5e:86:ba
Fingerprint (sha256): 07:a4:f1:dc:d3:8c:ea:c5:75:f3:e5:b8:b7:03:68:84:86:45:18:ee:16:5d:19:2e:b3:c3:49:49:7a:ae:d6:ac

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate tms.opacweb.fr

80

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for tms.opacweb.fr

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

2000ans2000images.toulouse.fr
augustins.opacweb.fr
ba-bordeaux.opacweb.fr
babibliobordeaux.opacweb.fr
biblio-nyon.opacweb.fr
capc.opacweb.fr
centrebrassens.ville-sete.fr
charles-negre.opacweb.fr
collections-mba.nancy.fr
collections-musees.nyon.ch
collections-sarreguemines.opacweb.fr
collections-vaucluse.opacweb.fr
collections.mba-pau.opacweb.fr
collections.museenouvellecaledonie.nc
collections.musees-dunkerque.eu
collections.musees.marseille.fr
collections.museum-histoirenaturelle.opacweb.fr
demo.opacweb.fr
dev.opacweb.fr
dev2.opacweb.fr
documentation-sarreguemines.opacweb.fr
documentation-vaucluse.opacweb.fr
documentation.laciteduvin.com
domaine-de-sceaux.opacweb.fr
dupuy.opacweb.fr
espacebrassens.ville-sete.fr
espacemuseal-mcn-collection.opacweb.fr
exposition-collection.opacweb.fr
filmoteca-oai.opacweb.fr
filmoteca-oainews.opacweb.fr
filmoteca.opacweb.fr
formation.opacweb.fr
junior.augustins.org
labit.opacweb.fr
maison-de-chateaubriand.opacweb.fr
maqbordeaux.opacweb.fr
matou.opacweb.fr
maugustins.opacweb.fr
mba-pau.opacweb.fr
mbalyon.opacweb.fr
mhc.opacweb.fr
mhn-opacweb.lille.fr
mhn2.opacweb.fr
mhntlse-ethno.opacweb.fr
mhntlse.opacweb.fr
mhntoulouse.opacweb.fr
mian-anatole-jakovsky.opacweb.fr
mobydocv7.opacweb.fr
musee-artsanciens-collection.opacweb.fr
musee-breton-oai.awstudio.website
musee-cheret.opacweb.fr
musee-cimiez.opacweb.fr
musee-leondierx.re
musee-massena.opacweb.fr
musee-matisse.opacweb.fr
musee-rops-collection.opacweb.fr
musee-villele.re
musee.coulommiers.fr
museenouvellecaledonie-collections.gouv.nc
museenouvellecaledonie-ipkd.gouv.nc
musees.aude.fr
musees.ville-poissy.fr
museeseburomagus.aude.fr
museespetiet.aude.fr
palais-lascaris.opacweb.fr
paul-dupuy.opacweb.fr
pba.opacweb.fr
prod.opacweb.fr
provincedenamur-collection.opacweb.fr
saintraymond.opacweb.fr
sarreguemines-museum.opacweb.fr
sp6.opacweb.fr
terra-amata.opacweb.fr
tms.opacweb.fr
toulouse.opacweb.fr
www.2000ans2000images.toulouse.fr
www.collections.musee-art-industrie.saint-etienne.fr
www.musee-carouge.ch
www.musee-leondierx.re
www.musee-villele.re

Other certificates including the domain name opacweb.fr

(limited to 100 certificates)
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
bo.opacweb.io
tms.opacweb.fr
tms.opacweb.fr
bo.opacweb.io
tms.opacweb.fr
bo.opacweb.io
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
collections.museum-histoirenaturelle.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
collections.museum-histoirenaturelle.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr

Certificate

The complete raw certificate details for tms.opacweb.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 418784849657938558336054796104323762416845
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-13 09:12:03 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-12 09:12:02 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tms.opacweb.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 760603007144094285131806883504704927710805770878496452889563046433098316180075941315245651128581944035789713711288188006110763353101694672233554755942741853426729744688434095036687174893300375265650385774590602745420308738646546083039589703771097249874102150064600064339880115467876587153442045915567868480808907697913177414290262361268148786008453990169725957792287504043865926248354674276389411237257341393592968387564013080167878734763474066098652590430715300478369250717717304225452219530041920606974606542075782634081153560550484223368365968670302917037592719794518130126185021402537855257158845626367786561404458003489856704776903072795213366309185429879115185252369340368290901220210687471959289027687595885421784631951744041388225455504809973348177492039946461076117136239390380915339022745513959365284064670724967676611973470098937349520608717055472935654664241338670715821328872694662506045294987308983336097371404865805048657785001391266607686841833288559083225623008205624837868032356581292268803099691472983600900873627037512899901994620361436440896023856406599512759951513571813002423429340431677783528993518503854042202849529900857876296078187316615650667753747301039540581251130909845079416336289887439688860705258063
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a1085b747172ee7fae7d196c5609d7c753bbf94a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2144 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '2000ans2000images.toulouse.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'augustins.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ba-bordeaux.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'babibliobordeaux.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'biblio-nyon.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'capc.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'centrebrassens.ville-sete.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'charles-negre.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-mba.nancy.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-musees.nyon.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-sarreguemines.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-vaucluse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.mba-pau.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.museenouvellecaledonie.nc'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.musees-dunkerque.eu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.musees.marseille.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.museum-histoirenaturelle.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev2.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'documentation-sarreguemines.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'documentation-vaucluse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'documentation.laciteduvin.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domaine-de-sceaux.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dupuy.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'espacebrassens.ville-sete.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'espacemuseal-mcn-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exposition-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'filmoteca-oai.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'filmoteca-oainews.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'filmoteca.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'formation.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'junior.augustins.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'labit.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maison-de-chateaubriand.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maqbordeaux.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'matou.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maugustins.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mba-pau.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mbalyon.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhc.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhn-opacweb.lille.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhn2.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhntlse-ethno.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhntlse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhntoulouse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mian-anatole-jakovsky.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mobydocv7.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-artsanciens-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-breton-oai.awstudio.website'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-cheret.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-cimiez.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-leondierx.re'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-massena.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-matisse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-rops-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-villele.re'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee.coulommiers.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museenouvellecaledonie-collections.gouv.nc'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museenouvellecaledonie-ipkd.gouv.nc'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musees.aude.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musees.ville-poissy.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museeseburomagus.aude.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museespetiet.aude.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'palais-lascaris.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paul-dupuy.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pba.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'provincedenamur-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saintraymond.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sarreguemines-museum.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sp6.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'terra-amata.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tms.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'toulouse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.2000ans2000images.toulouse.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.collections.musee-art-industrie.saint-etienne.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.musee-carouge.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.musee-leondierx.re'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.musee-villele.re'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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