fimi2i.insa-lyon.fr

- Institut National des Sciences Appliquées de Lyon -

Issued by GEANT OV RSA CA 4

About this certificate

This digital certificate with serial number 12:ea:e1:2b:55:55:94:09:e0:05:9d:a3:7e:2f:39:c6 was issued on by GEANT Vereniging.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Institut National des Sciences Appliquées de Lyon

Organization: Institut National des Sciences Appliquées de Lyon
Organization unit: API
State / Province: Auvergne-Rhône-Alpes
Country: FR

GEANT Vereniging

Organization: GEANT Vereniging
Country: NL

This certificate has expire since

Certificate Details

Serial Number (hex): 12:ea:e1:2b:55:55:94:09:e0:05:9d:a3:7e:2f:39:c6
Serial Number (int): 25145668364407128738440785337248594374
Serial Number lenght: 125 bits, 16 octets

SubjectKeyId: 21:8c:ec:eb:4e:24:7f:01:82:1f:ed:c2:ac:01:e5:c5:6b:53:59:08
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c

Fingerprint (sha1): 36:bc:5e:ef:29:a8:f0:42:58:9c:9c:b5:04:6d:48:73:66:be:9a:15
Fingerprint (sha256): 0b:fe:a1:ba:28:76:5b:87:38:b5:11:3b:66:4a:77:04:95:12:92:fa:4d:cf:90:d4:b8:f7:c1:ba:eb:8a:77:d4

Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt

Revocation information

OCSP Server: http://GEANT.ocsp.sectigo.com
CRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl

Check the revocation status for certificate fimi2i.insa-lyon.fr

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for fimi2i.insa-lyon.fr

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA384 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

fimi2i.insa-lyon.fr
www.fimi2i.insa-lyon.fr

Other certificates including the domain name insa-lyon.fr

(limited to 100 certificates)
insa-dpadsvil1-01.insa-lyon.fr
cocovn.insa-lyon.fr
www.insa-lyon.fr
reportserver.insa-lyon.fr
reve.insa-lyon.fr
mouvinsa.insa-lyon.fr
gofast.insa-lyon.fr
tc-net2.insa-lyon.fr
reve.insa-lyon.fr
orioai.insa-lyon.fr
telecom.insa-lyon.fr
insa-fd.insa-lyon.fr
svn.insa-lyon.fr
tux.creatis.insa-lyon.fr
jpo.insa-lyon.fr
exal.insa-lyon.fr
vk2000-v6.insa-lyon.fr
aip-primeca.insa-lyon.fr
insa-vcvil1-01.insa-lyon.fr
lamcosbao.insa-lyon.fr
ecole-ete.insa-lyon.fr
myriad.creatis.insa-lyon.fr
tux.creatis.insa-lyon.fr
neurosens.creatis.insa-lyon.fr
servif-cocktail.insa-lyon.fr
dsi.insa-lyon.fr
wiki-dsi.insa-lyon.fr
neurosens.creatis.insa-lyon.fr
desk.creatis.insa-lyon.fr
gtwresd.insa-lyon.fr
sgd.insa-lyon.fr
mediacenter.insa-lyon.fr
aip-foad-web.insa-lyon.fr
tux.creatis.insa-lyon.fr
gtwresc.insa-lyon.fr
vk2-gm-72.insa-lyon.fr
deep.insa-lyon.fr
cipcnet.insa-lyon.fr
fondation.insa-lyon.fr
insa-vxrmgrvil1-01.insa-lyon.fr
fimi2i.insa-lyon.fr
intranetgi.insa-lyon.fr
liris-ktbs01.insa-lyon.fr
humanheart-project.creatis.insa-lyon.fr
insa-vxrvil1-06.insa-lyon.fr
*.insa-lyon.fr
dsi-ipam.insa-lyon.fr
*.creatis.insa-lyon.fr
tux.creatis.insa-lyon.fr
webaedi.insa-lyon.fr
helpdesk.insa-lyon.fr
insa-rproxy-01.insa-lyon.fr
fex.insa-lyon.fr
tux.creatis.insa-lyon.fr
webaedi.insa-lyon.fr
*.docelec.insa-lyon.fr
tux.creatis.insa-lyon.fr
reportserver.insa-lyon.fr
humanheart-project.creatis.insa-lyon.fr
catalogue.insa-lyon.fr
biosciences.insa-lyon.fr
tux.creatis.insa-lyon.fr
dsi-esb.insa-lyon.fr
neurosens.creatis.insa-lyon.fr
gfc-services-test.insa-lyon.fr
biosciences.insa-lyon.fr
mandril.creatis.insa-lyon.fr
tux.creatis.insa-lyon.fr
gtwresh.insa-lyon.fr
phishing.insa-lyon.fr
cipcnet.insa-lyon.fr
insa-rproxypp-01.insa-lyon.fr
smtp6.insa-lyon.fr
rpmfind.creatis.insa-lyon.fr
lune.insa-lyon.fr
virtualstudyfair.insa-lyon.fr
humanheart-project.creatis.insa-lyon.fr
aris-connect.insa-lyon.fr
envue.insa-lyon.fr
acdc.creatis.insa-lyon.fr
intranetgi.insa-lyon.fr
desk.creatis.insa-lyon.fr
glpi.insa-lyon.fr
rpmfind.creatis.insa-lyon.fr
instrumentation.insa-lyon.fr
dsi-gitlab.insa-lyon.fr
phishing.insa-lyon.fr
lire-pp.insa-lyon.fr
envue.insa-lyon.fr
acdc.creatis.insa-lyon.fr
lire.insa-lyon.fr
redmine-pp.insa-lyon.fr
fex.insa-lyon.fr
insa-ppsympa.insa-lyon.fr
casi.insa-lyon.fr
acdc.creatis.insa-lyon.fr
openreports.insa-lyon.fr
*.docelec.insa-lyon.fr
camus.creatis.insa-lyon.fr
departements.insa-lyon.fr

Certificate

The complete raw certificate details for fimi2i.insa-lyon.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 25145668364407128738440785337248594374
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-16 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-16 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Auvergne-Rhône-Alpes'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Institut National des Sciences Appliquées de Lyon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'API'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fimi2i.insa-lyon.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 935056676972306879686836703588212593951997201925234590985324849084783551540545470811768786156324741768819399932671996830991250295425353404294561809950173413962018963431935025704021109491752610138053759888195818686155372658254270168705698487972208330434773414878062005499049501249628243259990449868671518274611037862388962882908061378801878885053819798258531092265010560647391194745557034459435175994287651758643438703328574931404698475569585098253660325659999292533871726923730281732342313107848669500734647303999725968602419520579221271775391005785067418320805832267103825457304351942259573689863997414003147499311988119866062964309581086965265397088282094378459583073459163516848278259853364033843799199844799814430958131914726072898116281676700654172126514149047820129199431674102534048979695763427949646792932597963029973014200814971980396197243501661151550394038324221484779019073620368152869893839578616513878717142778484012436569999895764372996004357041413996261236957336731794616448350768640171795876383382661289611781608185709885962856417736392387631092758270670875549390849392997992366318553342451980325252503188383008739942549795837266459417092577842521865605249859138545862942819299719540119151674010962923633171593955941
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							218ceceb4e247f01821fedc2ac01e5c56b535908
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fimi2i.insa-lyon.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fimi2i.insa-lyon.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		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