afh.cea.fr
- COMMISSARIAT A L'ENERGIE ATOMIQUE ET AUX ENERGIES ALTERNATIVES -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 33:43:76:d8:50:1f:57:47:ec:79:13:3a:d6:86:22:1f was issued on by GEANT Vereniging.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
COMMISSARIAT A L'ENERGIE ATOMIQUE ET AUX ENERGIES ALTERNATIVES
Organization:
COMMISSARIAT A L'ENERGIE ATOMIQUE ET AUX ENERGIES ALTERNATIVES
State / Province:
Paris
Country: FR
Country: FR
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate will expire on
Certificate Details
Serial Number (hex): 33:43:76:d8:50:1f:57:47:ec:79:13:3a:d6:86:22:1fSerial Number (int): 68140922136965566606170819012971602463
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 81:7d:a3:87:ee:1a:a9:17:d9:b2:20:1e:84:26:20:4f:c5:40:cf:81
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): a1:23:f6:fd:2b:f5:5f:22:f4:e6:49:49:cb:82:c4:3e:27:0b:ed:ec
Fingerprint (sha256): 0b:9d:4d:69:1a:f5:b9:bb:bb:8f:48:c5:de:19:17:03:f4:9d:77:7c:cd:c0:e1:9d:4d:ce:fc:f8:68:21:4c:99
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate afh.cea.fr
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for afh.cea.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
afh.cea.fr
Other certificates including the domain name cea.fr
(limited to 100 certificates)
joliot.cea.fr
projet-si-map.cea.fr
projet-sip.cea.fr
drf-internet.extra.cea.fr
p-shfj-gera-bdd.partenaires.cea.fr
sogreen-project.cea.fr
veille-dem.cea.fr
compta-dev.admin.ccc.cea.fr
lha-dmt2.cea.fr
projet-thermacem.cea.fr
infos-salaries.cea.fr
www-centre-saclay.cea.fr
agueil.eole.ccc.cea.fr
naiades-project.cea.fr
maintenance-digiteo.cea.fr
irig.cea.fr
q4-hilumi.cea.fr
www.mobilite-interne.cea.fr
afh.cea.fr
ged-extra-sacm.cea.fr
eu-aims.cea.fr
vpn.cea.fr
drf-upsac.cea.fr
hg2epx.cea.fr
vpn.cea.fr
projet-li2cem.cea.fr
montchretien02.admin.ccc.cea.fr
www.theses-postdocs.cea.fr
baudelaire02.admin.ccc.cea.fr
sarmenti-proposal-project.cea.fr
letsense.cea.fr
qflag.cea.fr
vpn.cea.fr
cirse-smtp-out.extra.cea.fr
talk3.extra.cea.fr
afh.cea.fr
events-list.partenaires.cea.fr
lotus.cea.fr
activage-intervention.cea.fr
communaute-lacrs.cea.fr
www-plat4m.cea.fr
anastasia2-project.cea.fr
instn.cea.fr
modsecaero.cea.fr
talents.cea.fr
e-i2ir-test.cea.fr
www-ged-demeterres.cea.fr
herschel-project.cea.fr
wiki.admin.ccc.cea.fr
bioproj.cea.fr
madmax.cea.fr
partage-dpad.cea.fr
chat.admin.ccc.cea.fr
gopv-project.cea.fr
www.emploi.cea.fr
webmail-e.cea.fr
transmil-project.cea.fr
integral-project.cea.fr
projet-li2cem.cea.fr
webmail-ext.qualif.cea.fr
sfcg-nuvia.cea.fr
spica-b-bop.cea.fr
rapport-scientifique-leti.cea.fr
projet-optifroid.cea.fr
integral-project.cea.fr
p-i2ipp-racine-collab.qualif-p.cea.fr
bts-frama-c.cea.fr
datadrf.cea.fr
webconfgre.cea.fr
p-i2i-test.partenaires.cea.fr
imagen2.cea.fr
garbin.eole.ccc.cea.fr
modsecaero.cea.fr
nectarcam-irfu.cea.fr
eu-aims.cea.fr
projet-labo-commun-masen.cea.fr
jobs.eurotalents.cea.fr
gouvernance-ca.cea.fr
www-cad.cea.fr
these-is.cea.fr
projet-entech-se.cea.fr
p-i2i-personnes.partenaires.cea.fr
www-leti.cea.fr
qgp-admin.cea.fr
solhyshare-project.cea.fr
compta-rct.admin.ccc.cea.fr
codev-tuleap.cea.fr
jacob.cea.fr
www-fr.ccc.cea.fr
projet-altess.cea.fr
i-id.cea.fr
farou.eole.ccc.cea.fr
com-mar-collab.cea.fr
projet-comepos.cea.fr
cbrn.partenaires.cea.fr
www-cadarache.cea.fr
oaasis.cea.fr
s2lam.cea.fr
www-dmt-rm2-far.cea.fr
phoenix.cea.fr
projet-si-map.cea.fr
projet-sip.cea.fr
drf-internet.extra.cea.fr
p-shfj-gera-bdd.partenaires.cea.fr
sogreen-project.cea.fr
veille-dem.cea.fr
compta-dev.admin.ccc.cea.fr
lha-dmt2.cea.fr
projet-thermacem.cea.fr
infos-salaries.cea.fr
www-centre-saclay.cea.fr
agueil.eole.ccc.cea.fr
naiades-project.cea.fr
maintenance-digiteo.cea.fr
irig.cea.fr
q4-hilumi.cea.fr
www.mobilite-interne.cea.fr
afh.cea.fr
ged-extra-sacm.cea.fr
eu-aims.cea.fr
vpn.cea.fr
drf-upsac.cea.fr
hg2epx.cea.fr
vpn.cea.fr
projet-li2cem.cea.fr
montchretien02.admin.ccc.cea.fr
www.theses-postdocs.cea.fr
baudelaire02.admin.ccc.cea.fr
sarmenti-proposal-project.cea.fr
letsense.cea.fr
qflag.cea.fr
vpn.cea.fr
cirse-smtp-out.extra.cea.fr
talk3.extra.cea.fr
afh.cea.fr
events-list.partenaires.cea.fr
lotus.cea.fr
activage-intervention.cea.fr
communaute-lacrs.cea.fr
www-plat4m.cea.fr
anastasia2-project.cea.fr
instn.cea.fr
modsecaero.cea.fr
talents.cea.fr
e-i2ir-test.cea.fr
www-ged-demeterres.cea.fr
herschel-project.cea.fr
wiki.admin.ccc.cea.fr
bioproj.cea.fr
madmax.cea.fr
partage-dpad.cea.fr
chat.admin.ccc.cea.fr
gopv-project.cea.fr
www.emploi.cea.fr
webmail-e.cea.fr
transmil-project.cea.fr
integral-project.cea.fr
projet-li2cem.cea.fr
webmail-ext.qualif.cea.fr
sfcg-nuvia.cea.fr
spica-b-bop.cea.fr
rapport-scientifique-leti.cea.fr
projet-optifroid.cea.fr
integral-project.cea.fr
p-i2ipp-racine-collab.qualif-p.cea.fr
bts-frama-c.cea.fr
datadrf.cea.fr
webconfgre.cea.fr
p-i2i-test.partenaires.cea.fr
imagen2.cea.fr
garbin.eole.ccc.cea.fr
modsecaero.cea.fr
nectarcam-irfu.cea.fr
eu-aims.cea.fr
projet-labo-commun-masen.cea.fr
jobs.eurotalents.cea.fr
gouvernance-ca.cea.fr
www-cad.cea.fr
these-is.cea.fr
projet-entech-se.cea.fr
p-i2i-personnes.partenaires.cea.fr
www-leti.cea.fr
qgp-admin.cea.fr
solhyshare-project.cea.fr
compta-rct.admin.ccc.cea.fr
codev-tuleap.cea.fr
jacob.cea.fr
www-fr.ccc.cea.fr
projet-altess.cea.fr
i-id.cea.fr
farou.eole.ccc.cea.fr
com-mar-collab.cea.fr
projet-comepos.cea.fr
cbrn.partenaires.cea.fr
www-cadarache.cea.fr
oaasis.cea.fr
s2lam.cea.fr
www-dmt-rm2-far.cea.fr
phoenix.cea.fr
Certificate
The complete raw certificate details for afh.cea.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHaDCCBVCgAwIBAgIQM0N22FAfV0fseRM61oYiHzANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjMxMTI3MDAwMDAwWhcNMjQxMTI2MjM1 OTU5WjB7MQswCQYDVQQGEwJGUjEOMAwGA1UECBMFUGFyaXMxRzBFBgNVBAoTPkNP TU1JU1NBUklBVCBBIEwnRU5FUkdJRSBBVE9NSVFVRSBFVCBBVVggRU5FUkdJRVMg QUxURVJOQVRJVkVTMRMwEQYDVQQDEwphZmguY2VhLmZyMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAxaSPN7ClQBZ1ZCK4PBt8gryepXgvcdelnY6KXl1c oOsY5wuDJwJUyRP/YC88pNKpGT2cLEGwQ7H9X8iswUjhcqzB3RE+DaFBf6/oJ7MU DxaU5aa5V3PbrQzaT9EyH95u/xFhcFAPTsxB6RATILDMo3xXdeL+Z/iXNVyDJKRo yM2dIp4dCHs4wBsBfrc9o6cHlAjXunO4uKyYMUsQC2/v+ow8uFQN/vnHMtdX6wK1 oEh+GlNuL1vmKxiyN+30x6Q1f2usAgAdWowglDXlcYxvpDSaZ8Bj7IA4vZsS72sJ cXzggPFCNE+0XQ/pRjo84cVmwSoTZBc0h/9H6Quq8yELVwIDAQABo4IDHTCCAxkw HwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFIF9o4fu GqkX2bIgHoQmIE/FQM+BMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQB sjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgG BmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3Rp Z28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEF BQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0 LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20w ggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AHb/iD8KtvuVUcJhzPWHujS0pM27 KdxoQgqf5mdMWjp0AAABjA4iA4YAAAQDAEcwRQIhAKA38rayize7ze+bA9mMxkDK ks0aruHAvs4aQavHn0nqAiAexdw0tuNQET1lFv2LmymnS9dP7OBUAW8YWJEfZ+ue jAB2AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/KIXs+GRuAAABjA4iBOEAAAQD AEcwRQIgMWgprJF66d9Y1aBcQa2xM6B+v/wMEWkWvnsxzfcxttQCIQDFVLjr6gJh Y020QnG2h1YR81bs/wWfeYFhedjwGa/H9wB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8 vOzew1FIWUZxH7WbAAABjA4iA7YAAAQDAEcwRQIhAK42EMmXdsofX2YR6M5mrvXv 3rp0aGYFkLF5nBdnHcylAiA6R+xAc16AavMbrg+s9b79YaSBkR2H7Z1rXT6PSSGu sDAVBgNVHREEDjAMggphZmguY2VhLmZyMA0GCSqGSIb3DQEBDAUAA4ICAQBc7Quc cqpFc6wvP8JqNzmbM0Wb3QCvbQ0LvH+yWUQHhlpJ95aMtYfUm27QfMCTZBGscroY V/y03kQlFEJSGurFSdyWgLrGagf4S5ClDMI8WLlqT5t6QVaNmjcc3Vq8E68ed7NS oeCJtQmkaVq0wfSGjc/Z+kMhTuCtot7Qnz/x3uX1iJlPOYsdpEBCVh5DUWDRJ384 cu5lQ1eCGhlKnL3c7Xy9ApMzw5Iye/XDtrnrkCyO6jk57HZDath26v/Qc4nBTiW+ G6MyP7hOsS0yh/b44uCR4XjBym7NrrduLzjkuBhTjbL6eiSTvXrG1FL+oN47mzYN d+kjvzDJElBdtJshY4by4srrNsM0RZ0yrXFr9Z8lo8pW/rxv2n1fyFQgjvyka8iI 3JsC5/AArzGK+192BHL1ygxSGgcfH8i3VUqSY0EcsRXOgkcqgWLN+zo+jCW/Uul1 KdPtTvp7mElAPHF7I9WmiCXHY4cFn1dbp52ISYVO54KruCWhPZcj38LsVNzZEJXF H7Koaltaxjc3b5r5Jfnchwpc2SgiqQxuhD+2x4aVZYQ3+fRCwNbJEW0aVXDCSgyY iTz6jX+EOrtQyqQB03oERIQnI4J8M1PgWdDM9HE4KMpKj8mEEw8abd62yC58YWEJ 4QP5MXCkkQJXMfho6noFxTmlis61TQLH4eu5dA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxaSPN7ClQBZ1ZCK4PBt8 gryepXgvcdelnY6KXl1coOsY5wuDJwJUyRP/YC88pNKpGT2cLEGwQ7H9X8iswUjh cqzB3RE+DaFBf6/oJ7MUDxaU5aa5V3PbrQzaT9EyH95u/xFhcFAPTsxB6RATILDM o3xXdeL+Z/iXNVyDJKRoyM2dIp4dCHs4wBsBfrc9o6cHlAjXunO4uKyYMUsQC2/v +ow8uFQN/vnHMtdX6wK1oEh+GlNuL1vmKxiyN+30x6Q1f2usAgAdWowglDXlcYxv pDSaZ8Bj7IA4vZsS72sJcXzggPFCNE+0XQ/pRjo84cVmwSoTZBc0h/9H6Quq8yEL VwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 68140922136965566606170819012971602463 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-26 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMMISSARIAT A L'ENERGIE ATOMIQUE ET AUX ENERGIES ALTERNATIVES' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'afh.cea.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24950093364310226404463577671365407882862507769804703419774895595941023578935841461639206363100741887746824662171703279645600562325922677862843221943293086798055393859456082064632224022106996610895433704786693040304260790597176004623551030641638965133394604711299892778046809216235207121509807884594147182167497204541290008971149077634667932772065187888728897678750262374166770046251600111659424575789460572335871938607205368479696909972532333316764358769590305300089166054740213079804736122932080909612519124987854272966562693368127241426841617089104487118331105601974182318197765343225175017081358310003802577636183 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 817da387ee1aa917d9b2201e8426204fc540cf81 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'afh.cea.fr' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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