www.diplomatie.gouv.fr
Issued by Gandi Standard SSL CA 2
About this certificate
This digital certificate with serial number 85:02:13:32:ff:a4:65:09:4f:c7:61:a6:84:b0:b3:0c was issued on by Gandi.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.diplomatie.gouv.fr
Gandi
Organization:
Gandi
State / Province:
Paris
Locality: Paris
Country: FR
Locality: Paris
Country: FR
This certificate has expire since
Certificate Details
Serial Number (hex): 85:02:13:32:ff:a4:65:09:4f:c7:61:a6:84:b0:b3:0cSerial Number (int): 176798097439418894316062263709120115468
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: da:d2:8d:2a:1a:f8:3a:ca:cf:16:14:9c:13:71:85:11:10:9d:2c:c0
AuthorityKeyId: b3:90:a7:d8:c9:af:4e:cd:61:3c:9f:7c:ad:5d:7f:41:fd:69:30:ea
Fingerprint (sha1): ab:3a:86:1b:a9:20:02:5b:37:d6:83:28:3f:84:24:b6:d1:4c:65:48
Fingerprint (sha256): 0b:9d:68:fa:04:89:53:3a:e1:47:d8:19:b9:57:5e:32:ce:2d:8f:b4:19:22:39:fd:c1:14:4c:44:94:ad:85:7b
Issuing Certificate URL: http://crt.usertrust.com/GandiStandardSSLCA2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.usertrust.com/GandiStandardSSLCA2.crl
Check the revocation status for certificate www.diplomatie.gouv.fr
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.diplomatie.gouv.fr
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.diplomatie.gouv.fr
diplomatie.gouv.fr
diplomatie.gouv.fr
Other certificates including the domain name diplomatie.gouv.fr
(limited to 100 certificates)
grandformat.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
dev.grandformat.diplomatie.gouv.fr
forge.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
monconsulat.diplomatie.gouv.fr
smacano.mad.diplomatie.gouv.fr
blog.diplomatie.gouv.fr
fecito.mad.diplomatie.gouv.fr
enrolement.portail.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
smtp1.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
fecito.mad.rad.diplomatie.gouv.fr
latitudefrance.org
apps.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
votefae.diplomatie.gouv.fr
www.diplomatie.gouv.fr
latitudefrance.org
apk.diplomatie.gouv.fr
monconsulat.diplomatie.gouv.fr
cncd.diplomatie.gouv.fr
idppastel.diplomatie.gouv.fr
ariane.diplomatie.gouv.fr
escano.mad.rad.diplomatie.gouv.fr
escano.mad.rad.diplomatie.gouv.fr
api.diplomatie.gouv.fr
apk.diplomatie.gouv.fr
escano.mad.rad.diplomatie.gouv.fr
grandformat.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
pm.dpad.rad.diplomatie.gouv.fr
monconsulat.diplomatie.gouv.fr
grandformat.diplomatie.gouv.fr
epoc.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
latitudefrance.org
apps.diplomatie.gouv.fr
latitudefrance.org
basedoc.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
portalis.diplomatie.gouv.fr
blog.diplomatie.gouv.fr
vuedemafenetre.diplomatie.gouv.fr
santiano.mad.rad.diplomatie.gouv.fr
grandformat.diplomatie.gouv.fr
pm.dpad.rad.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
grandformat.diplomatie.gouv.fr
micore.dpad.rad.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
escano.mad.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
cic-lp.diplomatie.gouv.fr
fecito.mad.diplomatie.gouv.fr
portalis.diplomatie.gouv.fr
latitudefrance.org
vuedemafenetre.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
blog.diplomatie.gouv.fr
pm.dpad.diplomatie.gouv.fr
pastel.diplomatie.gouv.fr
latitudefrance.org
vuedemafenetre.diplomatie.gouv.fr
pastel.diplomatie.gouv.fr
grandformat.diplomatie.gouv.fr
blog.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
catalogue.api.diplomatie.gouv.fr
*.reseau21.diplomatie.gouv.fr
bibliotheque-numerique.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
blog.diplomatie.gouv.fr
portalis.diplomatie.gouv.fr
pm.dpad.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
epoc.diplomatie.gouv.fr
ariane.diplomatie.gouv.fr
vuedemafenetre.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
mail.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
portail.diplomatie.gouv.fr
micore.dpad.diplomatie.gouv.fr
apk.diplomatie.gouv.fr
stendhal.diplomatie.gouv.fr
pastel.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
blog.diplomatie.gouv.fr
escano.mad.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
dev.grandformat.diplomatie.gouv.fr
forge.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
monconsulat.diplomatie.gouv.fr
smacano.mad.diplomatie.gouv.fr
blog.diplomatie.gouv.fr
fecito.mad.diplomatie.gouv.fr
enrolement.portail.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
smtp1.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
fecito.mad.rad.diplomatie.gouv.fr
latitudefrance.org
apps.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
votefae.diplomatie.gouv.fr
www.diplomatie.gouv.fr
latitudefrance.org
apk.diplomatie.gouv.fr
monconsulat.diplomatie.gouv.fr
cncd.diplomatie.gouv.fr
idppastel.diplomatie.gouv.fr
ariane.diplomatie.gouv.fr
escano.mad.rad.diplomatie.gouv.fr
escano.mad.rad.diplomatie.gouv.fr
api.diplomatie.gouv.fr
apk.diplomatie.gouv.fr
escano.mad.rad.diplomatie.gouv.fr
grandformat.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
pm.dpad.rad.diplomatie.gouv.fr
monconsulat.diplomatie.gouv.fr
grandformat.diplomatie.gouv.fr
epoc.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
latitudefrance.org
apps.diplomatie.gouv.fr
latitudefrance.org
basedoc.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
portalis.diplomatie.gouv.fr
blog.diplomatie.gouv.fr
vuedemafenetre.diplomatie.gouv.fr
santiano.mad.rad.diplomatie.gouv.fr
grandformat.diplomatie.gouv.fr
pm.dpad.rad.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
grandformat.diplomatie.gouv.fr
micore.dpad.rad.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
escano.mad.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
cic-lp.diplomatie.gouv.fr
fecito.mad.diplomatie.gouv.fr
portalis.diplomatie.gouv.fr
latitudefrance.org
vuedemafenetre.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
blog.diplomatie.gouv.fr
pm.dpad.diplomatie.gouv.fr
pastel.diplomatie.gouv.fr
latitudefrance.org
vuedemafenetre.diplomatie.gouv.fr
pastel.diplomatie.gouv.fr
grandformat.diplomatie.gouv.fr
blog.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
catalogue.api.diplomatie.gouv.fr
*.reseau21.diplomatie.gouv.fr
bibliotheque-numerique.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
blog.diplomatie.gouv.fr
portalis.diplomatie.gouv.fr
pm.dpad.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
epoc.diplomatie.gouv.fr
ariane.diplomatie.gouv.fr
vuedemafenetre.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
mail.diplomatie.gouv.fr
webdocs.diplomatie.gouv.fr
portail.diplomatie.gouv.fr
micore.dpad.diplomatie.gouv.fr
apk.diplomatie.gouv.fr
stendhal.diplomatie.gouv.fr
pastel.diplomatie.gouv.fr
apps.diplomatie.gouv.fr
blog.diplomatie.gouv.fr
escano.mad.diplomatie.gouv.fr
Certificate
The complete raw certificate details for www.diplomatie.gouv.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3zCCBMegAwIBAgIRAIUCEzL/pGUJT8dhpoSwswwwDQYJKoZIhvcNAQELBQAw XzELMAkGA1UEBhMCRlIxDjAMBgNVBAgTBVBhcmlzMQ4wDAYDVQQHEwVQYXJpczEO MAwGA1UEChMFR2FuZGkxIDAeBgNVBAMTF0dhbmRpIFN0YW5kYXJkIFNTTCBDQSAy MB4XDTIxMDkyNzAwMDAwMFoXDTIyMTAyMzIzNTk1OVowITEfMB0GA1UEAxMWd3d3 LmRpcGxvbWF0aWUuZ291di5mcjCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoC ggIBALtj2b7n8W0vqBlL9FWpC8U7SjM5JmRQljjlW42QnZl3LH/h4peo+dS+Kziv YUpuMoJqW+EoOOebgOaSmcFiqPZnzNSu7neeZgs9efglhFqQUv+N33fN+cUIrt9+ eP0W3g+nJ1781VerKeqHK3qK7wDZ+mYo1703f7msGQUubQcxLBXwnLnJpSHio6wT KnFzynLPd8IQKS07xtaKm9RWCPTC0Xv6vC7Mfv1F+jZi2fI2OFY9xzla5iEOvdDD eY5QBrAqwf2spv3wRKaocSCvqQP3BR3iisMBfhRbLCq/6UoyGoi9Pzhv+n1BKamG XVy/xJIGb8JLoNr/5CxwCQmuhol+gWhZFAw4EoFSnjSmU0b11O7loUegfSqOExbL becYNT0chhnKoncYK+sLPrJvjPMGMIEk7yDk7QwIZHpiTwvLNwt6QS3jjSUHSIAn 5ddgX+RvTNeNvbhkiX3UuuK9+OTbTiN57bExCgYZX4pYu5Hjd55NdgNhGTKbdZ5x VnMs/2HvL2tsn+zZfNsXj2a78deV0oq5DGoaAi1derwHOOhA/AEidEfI/m82dC+R 9/hXcGqydzu7zPZVaAmOkM69RzAga/F/XhEskVp94fEnUSPtePDG6kKPyDHuwksR i6XU5zYHr5KvfPwniVutb7XCmsbYv1ok3103/LVf0cmlE/VjAgMBAAGjggHSMIIB zjAfBgNVHSMEGDAWgBSzkKfYya9OzWE8n3ytXX9B/Wkw6jAdBgNVHQ4EFgQU2tKN Khr4OsrPFhScE3GFERCdLMAwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEsGA1UdIAREMEIwNgYLKwYB BAGyMQECAhowJzAlBggrBgEFBQcCARYZaHR0cHM6Ly9jcHMudXNlcnRydXN0LmNv bTAIBgZngQwBAgEwQQYDVR0fBDowODA2oDSgMoYwaHR0cDovL2NybC51c2VydHJ1 c3QuY29tL0dhbmRpU3RhbmRhcmRTU0xDQTIuY3JsMHMGCCsGAQUFBwEBBGcwZTA8 BggrBgEFBQcwAoYwaHR0cDovL2NydC51c2VydHJ1c3QuY29tL0dhbmRpU3RhbmRh cmRTU0xDQTIuY3J0MCUGCCsGAQUFBzABhhlodHRwOi8vb2NzcC51c2VydHJ1c3Qu Y29tMDUGA1UdEQQuMCyCFnd3dy5kaXBsb21hdGllLmdvdXYuZnKCEmRpcGxvbWF0 aWUuZ291di5mcjATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkRnPaJlyj7jUaCazYBj5RnNIFCifKfKYSpnBtCgzT0quvze6ZSBKLnAc83Fm L6I7eDzNYGgj3SjRb1A1NzvXWe8YJGUSyBLDBVAgqmWeU4g07gWs6L9iAXuY3x7p Rve7HkiJqsyBxrOAaGqS1Zn9nkC9h5eTpIOTsQr/ppv2ZgJZ5qMfLPttPm0Xt5n5 EZcIYd58FQQryPBU4Gn2Z1BCqiNAp0jzYBTslxh/J0Rn3m4W8Ic4qMIBq10ruOfM Xv7SfTK2Uxw5ybwF91mrsxLj+30YHuc1smJ5Jrb2soe6h8YzLXpN+UdT7a7ykvpm p9jc5olgNNGXdKxZdGADcBXvsg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAu2PZvufxbS+oGUv0VakL xTtKMzkmZFCWOOVbjZCdmXcsf+Hil6j51L4rOK9hSm4ygmpb4Sg455uA5pKZwWKo 9mfM1K7ud55mCz15+CWEWpBS/43fd835xQiu3354/RbeD6cnXvzVV6sp6ocreorv ANn6ZijXvTd/uawZBS5tBzEsFfCcucmlIeKjrBMqcXPKcs93whApLTvG1oqb1FYI 9MLRe/q8Lsx+/UX6NmLZ8jY4Vj3HOVrmIQ690MN5jlAGsCrB/aym/fBEpqhxIK+p A/cFHeKKwwF+FFssKr/pSjIaiL0/OG/6fUEpqYZdXL/EkgZvwkug2v/kLHAJCa6G iX6BaFkUDDgSgVKeNKZTRvXU7uWhR6B9Ko4TFstt5xg1PRyGGcqidxgr6ws+sm+M 8wYwgSTvIOTtDAhkemJPC8s3C3pBLeONJQdIgCfl12Bf5G9M1429uGSJfdS64r34 5NtOI3ntsTEKBhlfili7keN3nk12A2EZMpt1nnFWcyz/Ye8va2yf7Nl82xePZrvx 15XSirkMahoCLV16vAc46ED8ASJ0R8j+bzZ0L5H3+FdwarJ3O7vM9lVoCY6Qzr1H MCBr8X9eESyRWn3h8SdRI+148MbqQo/IMe7CSxGLpdTnNgevkq98/CeJW61vtcKa xti/WiTfXTf8tV/RyaUT9WMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 176798097439418894316062263709120115468 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi Standard SSL CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-23 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.diplomatie.gouv.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 764484670338935647397531828847315601641166725496505919758410601741383597348866764775053173103355035608319511022345619234392015979834880618713534759608806782430760522027431392055639048547108196332911798548750592188201028444941638733836254104233565581510146607540717515253077722335173359083067882659752335575487361054565903112183533125316722861248635479980254234016163181304700525244597824851728296581802469189055995092773443664249840332414976343356969109519631450336832608542738391849634407813721843949343481127061736079762641792224303998553334845717102416160851347412175726070528710385648355434134792515213110945705590263253047452925701412328460404727091684489815513155623894699843093031244518317936411629197458857019824442496229015298563640317927158212578688601212602889918905101193076894773250497374453289577172694432870888239530583177397929833772767194379504100527825437512477213117011843609125450721886495977662320530270400345732181388108964014561731224600907736492228286239886275861968393843730703733888595429174465352658032977467026505528426375939656405492527319897423131465246710168878984502402881273133819084178927201302036382475539011158771385633282469105276484404689966688586214495154718785050173397530029571535845685720419 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b390a7d8c9af4ecd613c9f7cad5d7f41fd6930ea . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dad28d2a1af83acacf16149c13718511109d2cc0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.26 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/GandiStandardSSLCA2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/GandiStandardSSLCA2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.diplomatie.gouv.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'diplomatie.gouv.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 009119cf6899728fb8d46826b36018f946734814289f29f2984a99c1b428334f4aaebf37ba65204a2e701cf371662fa23b783ccd606823dd28d16f5035373bd759ef18246512c812c3055020aa659e538834ee05ace8bf62017b98df1ee946f7bb1e4889aacc81c6b380686a92d599fd9e40bd879793a48393b10affa69bf6660259e6a31f2cfb6d3e6d17b799f911970861de7c15042bc8f054e069f6675042aa2340a748f36014ec97187f274467de6e16f08738a8c201ab5d2bb8e7cc5efed27d32b6531c39c9bc05f759abb312e3fb7d181ee735b2627926b6f6b287ba87c6332d7a4df94753edaef292fa66a7d8dce6896034d19774ac597460037015efb2