fimi2i.insa-lyon.fr
- Institut National des Sciences Appliquées de Lyon -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 12:ea:e1:2b:55:55:94:09:e0:05:9d:a3:7e:2f:39:c6 was issued on by GEANT Vereniging.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Institut National des Sciences Appliquées de Lyon
Organization:
Institut National des Sciences Appliquées de Lyon
Organization unit: API
Organization unit: API
State / Province:
Auvergne-Rhône-Alpes
Country: FR
Country: FR
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 12:ea:e1:2b:55:55:94:09:e0:05:9d:a3:7e:2f:39:c6Serial Number (int): 25145668364407128738440785337248594374
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 21:8c:ec:eb:4e:24:7f:01:82:1f:ed:c2:ac:01:e5:c5:6b:53:59:08
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 36:bc:5e:ef:29:a8:f0:42:58:9c:9c:b5:04:6d:48:73:66:be:9a:15
Fingerprint (sha256): 0b:fe:a1:ba:28:76:5b:87:38:b5:11:3b:66:4a:77:04:95:12:92:fa:4d:cf:90:d4:b8:f7:c1:ba:eb:8a:77:d4
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate fimi2i.insa-lyon.fr
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for fimi2i.insa-lyon.fr
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
fimi2i.insa-lyon.fr
www.fimi2i.insa-lyon.fr
www.fimi2i.insa-lyon.fr
Other certificates including the domain name insa-lyon.fr
(limited to 100 certificates)
insa-dpadsvil1-01.insa-lyon.fr
cocovn.insa-lyon.fr
www.insa-lyon.fr
reportserver.insa-lyon.fr
reve.insa-lyon.fr
mouvinsa.insa-lyon.fr
gofast.insa-lyon.fr
tc-net2.insa-lyon.fr
reve.insa-lyon.fr
orioai.insa-lyon.fr
telecom.insa-lyon.fr
insa-fd.insa-lyon.fr
svn.insa-lyon.fr
tux.creatis.insa-lyon.fr
jpo.insa-lyon.fr
exal.insa-lyon.fr
vk2000-v6.insa-lyon.fr
aip-primeca.insa-lyon.fr
insa-vcvil1-01.insa-lyon.fr
lamcosbao.insa-lyon.fr
ecole-ete.insa-lyon.fr
myriad.creatis.insa-lyon.fr
tux.creatis.insa-lyon.fr
neurosens.creatis.insa-lyon.fr
servif-cocktail.insa-lyon.fr
dsi.insa-lyon.fr
wiki-dsi.insa-lyon.fr
neurosens.creatis.insa-lyon.fr
desk.creatis.insa-lyon.fr
gtwresd.insa-lyon.fr
sgd.insa-lyon.fr
mediacenter.insa-lyon.fr
aip-foad-web.insa-lyon.fr
tux.creatis.insa-lyon.fr
gtwresc.insa-lyon.fr
vk2-gm-72.insa-lyon.fr
deep.insa-lyon.fr
cipcnet.insa-lyon.fr
fondation.insa-lyon.fr
insa-vxrmgrvil1-01.insa-lyon.fr
fimi2i.insa-lyon.fr
intranetgi.insa-lyon.fr
liris-ktbs01.insa-lyon.fr
humanheart-project.creatis.insa-lyon.fr
insa-vxrvil1-06.insa-lyon.fr
*.insa-lyon.fr
dsi-ipam.insa-lyon.fr
*.creatis.insa-lyon.fr
tux.creatis.insa-lyon.fr
webaedi.insa-lyon.fr
helpdesk.insa-lyon.fr
insa-rproxy-01.insa-lyon.fr
fex.insa-lyon.fr
tux.creatis.insa-lyon.fr
webaedi.insa-lyon.fr
*.docelec.insa-lyon.fr
tux.creatis.insa-lyon.fr
reportserver.insa-lyon.fr
humanheart-project.creatis.insa-lyon.fr
catalogue.insa-lyon.fr
biosciences.insa-lyon.fr
tux.creatis.insa-lyon.fr
dsi-esb.insa-lyon.fr
neurosens.creatis.insa-lyon.fr
gfc-services-test.insa-lyon.fr
biosciences.insa-lyon.fr
mandril.creatis.insa-lyon.fr
tux.creatis.insa-lyon.fr
gtwresh.insa-lyon.fr
phishing.insa-lyon.fr
cipcnet.insa-lyon.fr
insa-rproxypp-01.insa-lyon.fr
smtp6.insa-lyon.fr
rpmfind.creatis.insa-lyon.fr
lune.insa-lyon.fr
virtualstudyfair.insa-lyon.fr
humanheart-project.creatis.insa-lyon.fr
aris-connect.insa-lyon.fr
envue.insa-lyon.fr
acdc.creatis.insa-lyon.fr
intranetgi.insa-lyon.fr
desk.creatis.insa-lyon.fr
glpi.insa-lyon.fr
rpmfind.creatis.insa-lyon.fr
instrumentation.insa-lyon.fr
dsi-gitlab.insa-lyon.fr
phishing.insa-lyon.fr
lire-pp.insa-lyon.fr
envue.insa-lyon.fr
acdc.creatis.insa-lyon.fr
lire.insa-lyon.fr
redmine-pp.insa-lyon.fr
fex.insa-lyon.fr
insa-ppsympa.insa-lyon.fr
casi.insa-lyon.fr
acdc.creatis.insa-lyon.fr
openreports.insa-lyon.fr
*.docelec.insa-lyon.fr
camus.creatis.insa-lyon.fr
departements.insa-lyon.fr
cocovn.insa-lyon.fr
www.insa-lyon.fr
reportserver.insa-lyon.fr
reve.insa-lyon.fr
mouvinsa.insa-lyon.fr
gofast.insa-lyon.fr
tc-net2.insa-lyon.fr
reve.insa-lyon.fr
orioai.insa-lyon.fr
telecom.insa-lyon.fr
insa-fd.insa-lyon.fr
svn.insa-lyon.fr
tux.creatis.insa-lyon.fr
jpo.insa-lyon.fr
exal.insa-lyon.fr
vk2000-v6.insa-lyon.fr
aip-primeca.insa-lyon.fr
insa-vcvil1-01.insa-lyon.fr
lamcosbao.insa-lyon.fr
ecole-ete.insa-lyon.fr
myriad.creatis.insa-lyon.fr
tux.creatis.insa-lyon.fr
neurosens.creatis.insa-lyon.fr
servif-cocktail.insa-lyon.fr
dsi.insa-lyon.fr
wiki-dsi.insa-lyon.fr
neurosens.creatis.insa-lyon.fr
desk.creatis.insa-lyon.fr
gtwresd.insa-lyon.fr
sgd.insa-lyon.fr
mediacenter.insa-lyon.fr
aip-foad-web.insa-lyon.fr
tux.creatis.insa-lyon.fr
gtwresc.insa-lyon.fr
vk2-gm-72.insa-lyon.fr
deep.insa-lyon.fr
cipcnet.insa-lyon.fr
fondation.insa-lyon.fr
insa-vxrmgrvil1-01.insa-lyon.fr
fimi2i.insa-lyon.fr
intranetgi.insa-lyon.fr
liris-ktbs01.insa-lyon.fr
humanheart-project.creatis.insa-lyon.fr
insa-vxrvil1-06.insa-lyon.fr
*.insa-lyon.fr
dsi-ipam.insa-lyon.fr
*.creatis.insa-lyon.fr
tux.creatis.insa-lyon.fr
webaedi.insa-lyon.fr
helpdesk.insa-lyon.fr
insa-rproxy-01.insa-lyon.fr
fex.insa-lyon.fr
tux.creatis.insa-lyon.fr
webaedi.insa-lyon.fr
*.docelec.insa-lyon.fr
tux.creatis.insa-lyon.fr
reportserver.insa-lyon.fr
humanheart-project.creatis.insa-lyon.fr
catalogue.insa-lyon.fr
biosciences.insa-lyon.fr
tux.creatis.insa-lyon.fr
dsi-esb.insa-lyon.fr
neurosens.creatis.insa-lyon.fr
gfc-services-test.insa-lyon.fr
biosciences.insa-lyon.fr
mandril.creatis.insa-lyon.fr
tux.creatis.insa-lyon.fr
gtwresh.insa-lyon.fr
phishing.insa-lyon.fr
cipcnet.insa-lyon.fr
insa-rproxypp-01.insa-lyon.fr
smtp6.insa-lyon.fr
rpmfind.creatis.insa-lyon.fr
lune.insa-lyon.fr
virtualstudyfair.insa-lyon.fr
humanheart-project.creatis.insa-lyon.fr
aris-connect.insa-lyon.fr
envue.insa-lyon.fr
acdc.creatis.insa-lyon.fr
intranetgi.insa-lyon.fr
desk.creatis.insa-lyon.fr
glpi.insa-lyon.fr
rpmfind.creatis.insa-lyon.fr
instrumentation.insa-lyon.fr
dsi-gitlab.insa-lyon.fr
phishing.insa-lyon.fr
lire-pp.insa-lyon.fr
envue.insa-lyon.fr
acdc.creatis.insa-lyon.fr
lire.insa-lyon.fr
redmine-pp.insa-lyon.fr
fex.insa-lyon.fr
insa-ppsympa.insa-lyon.fr
casi.insa-lyon.fr
acdc.creatis.insa-lyon.fr
openreports.insa-lyon.fr
*.docelec.insa-lyon.fr
camus.creatis.insa-lyon.fr
departements.insa-lyon.fr
Certificate
The complete raw certificate details for fimi2i.insa-lyon.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHOTCCBSGgAwIBAgIQEurhK1VVlAngBZ2jfi85xjANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjIwNjE2MDAwMDAwWhcNMjMwNjE2MjM1 OTU5WjCBljELMAkGA1UEBhMCRlIxHjAcBgNVBAgMFUF1dmVyZ25lLVJow7RuZS1B bHBlczE7MDkGA1UECgwySW5zdGl0dXQgTmF0aW9uYWwgZGVzIFNjaWVuY2VzIEFw cGxpcXXDqWVzIGRlIEx5b24xDDAKBgNVBAsTA0FQSTEcMBoGA1UEAxMTZmltaTJp Lmluc2EtbHlvbi5mcjCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOUz V3M3e7P8yFe3WKspOpFN+mpthI5jg393IPXtshQMDlNSh//KUJHf10ro3R7COZ9Y lY3LRL4H0dC4ihSR9yU/D5duHvj6QRD8jMQBhq6kA24XPPNEwRd7fQPk9YC2Lfj0 zKmVg8xT9fGI4cpmCJzkAwoKRV2JDNl8/xxVrZYsLhAo+cFkNbReavRRT6uM9w3P Q8Gp7/PDuWC6XTtYDpmt4DE60UPkMtR4LYlCUmh7lTxQT2y4n1AjvN2YC/h3A+1c zXgCT0eCxJKmsstxBAtwcAbLwH8S/8OH18ggJ6n2dVbbdAFNEQu5rTyIV+FHNBRq UQIOEoPrvYtclMqtvjUpv8nQz/HedoPd91NY795f88oshyEI2Dr12HxYnRo6KvaZ Pjvv25GbrSYQcmRj2BodByIwtjSvQBNQmn6qs/w/NcD+p7Nv13kUwImmdyj7K04K LLQFlWoiMWMc3HtYc8DZ9wJDt0Lt01lK1ZUrpsVwrOqsL6l5Ae2uULrDPuLs3h9r xjQXBiMPfXzjbfxnThPUJ2jCULky923uxSLG5oEHXCuZTnfCEcXoXUgrKGA+wfEV DrVs5eFYUaPyZFepZnjXVxVcgIzvPKHa6vpw5HjFLiERQ5DiY3uB7gjrHbx8hLlM +6dHn1dRBAbYk6gSVxn1wN/wV5HqBrxNgEoJqAplAgMBAAGjggHSMIIBzjAfBgNV HSMEGDAWgBRvHTVJEGwy+lmgnryK6B+VvnF6DDAdBgNVHQ4EFgQUIYzs604kfwGC H+3CrAHlxWtTWQgwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGyMQEC Ak8wJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EM AQICMD8GA1UdHwQ4MDYwNKAyoDCGLmh0dHA6Ly9HRUFOVC5jcmwuc2VjdGlnby5j b20vR0VBTlRPVlJTQUNBNC5jcmwwdQYIKwYBBQUHAQEEaTBnMDoGCCsGAQUFBzAC hi5odHRwOi8vR0VBTlQuY3J0LnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3J0 MCkGCCsGAQUFBzABhh1odHRwOi8vR0VBTlQub2NzcC5zZWN0aWdvLmNvbTA3BgNV HREEMDAughNmaW1pMmkuaW5zYS1seW9uLmZyghd3d3cuZmltaTJpLmluc2EtbHlv bi5mcjATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQwFAAOCAgEAoAiW Grflvh+Qjdil1wPEG8VxQerlMxwlcdJljKSsYHn8bHzPnb+hwfAq/6TE79BKBsqa 9+oAJ2Xc8CSbw9hTJIpbDv4hrSVqVYfM6FbRvXzXvuflJF3/A0KxXYURJT5LRbkR LEP9m9sSl9UJ6XYLCYDvyvIHWWCOaM0Cqb0wf5wLMpIWLINRkftUkj8QfOSYzpsG YfDXnxbrJjezKFpHcUWlxpBjoMuqQRiXB7TJx5iSQRpFsHym0F/C/DUHv30iQG9F 7akn62x/GwxumfbQQuUxtZkYQaS4gtdKoP9x6/b/c53/hPaQKroW3m+LBC3KbUvD 5IkOIGdEY3OqO8zRV6SpMk7s7xnOf/+JK5bmVbpEQmbpeLmxIZvTrpVfX/MuCAN2 8XqaQSWAlQC3RGZ9fL4OZCys0kD/glZQMdpv+bcafazYAXvE0VZDxtns4658F/Xj NSRW39x/XYyHGgy+dnqr0OkVa3BGhM1rUhkk6rXJqV4olhO9yeBVwXmC9M52Z/Al gg36uEYdtO9bYSq5FSYcLKsLo5qL0eo95r5GuM89EZPFTyv/chQqWemPUIeKWiEg P57MGcfPTGKDn8kla5y9HC/0nOqM6z/SsgVE0E4omP9ithaoWM3UDCT9CtWmr+XH /mup3hmtdirqxCBxqGs5P0pULX+79D8hFzSyKF8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5TNXczd7s/zIV7dYqyk6 kU36am2EjmODf3cg9e2yFAwOU1KH/8pQkd/XSujdHsI5n1iVjctEvgfR0LiKFJH3 JT8Pl24e+PpBEPyMxAGGrqQDbhc880TBF3t9A+T1gLYt+PTMqZWDzFP18YjhymYI nOQDCgpFXYkM2Xz/HFWtliwuECj5wWQ1tF5q9FFPq4z3Dc9Dwanv88O5YLpdO1gO ma3gMTrRQ+Qy1HgtiUJSaHuVPFBPbLifUCO83ZgL+HcD7VzNeAJPR4LEkqayy3EE C3BwBsvAfxL/w4fXyCAnqfZ1Vtt0AU0RC7mtPIhX4Uc0FGpRAg4Sg+u9i1yUyq2+ NSm/ydDP8d52g933U1jv3l/zyiyHIQjYOvXYfFidGjoq9pk+O+/bkZutJhByZGPY Gh0HIjC2NK9AE1Cafqqz/D81wP6ns2/XeRTAiaZ3KPsrTgostAWVaiIxYxzce1hz wNn3AkO3Qu3TWUrVlSumxXCs6qwvqXkB7a5QusM+4uzeH2vGNBcGIw99fONt/GdO E9QnaMJQuTL3be7FIsbmgQdcK5lOd8IRxehdSCsoYD7B8RUOtWzl4VhRo/JkV6lm eNdXFVyAjO88odrq+nDkeMUuIRFDkOJje4HuCOsdvHyEuUz7p0efV1EEBtiTqBJX GfXA3/BXkeoGvE2ASgmoCmUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 25145668364407128738440785337248594374 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Auvergne-Rhône-Alpes' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Institut National des Sciences Appliquées de Lyon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'API' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fimi2i.insa-lyon.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 935056676972306879686836703588212593951997201925234590985324849084783551540545470811768786156324741768819399932671996830991250295425353404294561809950173413962018963431935025704021109491752610138053759888195818686155372658254270168705698487972208330434773414878062005499049501249628243259990449868671518274611037862388962882908061378801878885053819798258531092265010560647391194745557034459435175994287651758643438703328574931404698475569585098253660325659999292533871726923730281732342313107848669500734647303999725968602419520579221271775391005785067418320805832267103825457304351942259573689863997414003147499311988119866062964309581086965265397088282094378459583073459163516848278259853364033843799199844799814430958131914726072898116281676700654172126514149047820129199431674102534048979695763427949646792932597963029973014200814971980396197243501661151550394038324221484779019073620368152869893839578616513878717142778484012436569999895764372996004357041413996261236957336731794616448350768640171795876383382661289611781608185709885962856417736392387631092758270670875549390849392997992366318553342451980325252503188383008739942549795837266459417092577842521865605249859138545862942819299719540119151674010962923633171593955941 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 218ceceb4e247f01821fedc2ac01e5c56b535908 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fimi2i.insa-lyon.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fimi2i.insa-lyon.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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