passtrans.impots.gouv.fr

- DIRECTION GENERALE DES FINANCES PUBLIQUES -

Issued by Certigna Services CA

About this certificate

This digital certificate with serial number aa:46:6d:8b:d0:a0:4c:80:35:b6:93:e3:41:0f:31:38 was issued on by DHIMYOTIS.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

DIRECTION GENERALE DES FINANCES PUBLIQUES

Company registration number: S307240581
Organization: DIRECTION GENERALE DES FINANCES PUBLIQUES
Locality: PARIS
Country: FR

DHIMYOTIS

Organization: DHIMYOTIS
Organization unit: 0002 48146308100036
Country: FR

This certificate will expire on

Certificate Details

Serial Number (hex): aa:46:6d:8b:d0:a0:4c:80:35:b6:93:e3:41:0f:31:38
Serial Number (int): 226334441923461195281347968768299446584
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: db:88:22:3a:6f:86:a0:83:83:cc:e9:43:2c:4f:48:b2:7b:e5:e4:55
AuthorityKeyId: ac:ec:86:8f:4b:37:1c:b8:7f:17:1b:19:d0:ae:e8:4e:e3:34:5c:12

Fingerprint (sha1): dc:6b:1d:53:70:1f:00:cf:e3:f1:0e:53:e0:3b:da:14:69:42:91:42
Fingerprint (sha256): 0d:72:f2:5a:00:bd:ef:c4:00:2b:47:95:5f:16:e6:fc:14:4f:97:b9:6e:ab:06:0b:60:7b:76:ac:43:db:4e:fd

Issuing Certificate URL: http://autorite.certigna.fr/servicesca.der
Issuing Certificate URL: http://autorite.dhimyotis.com/servicesca.der

Revocation information

OCSP Server: http://servicesca.ocsp.certigna.fr
OCSP Server: http://servicesca.ocsp.dhimyotis.com
CRL Distribution Point: http://crl.dhimyotis.com/servicesca.crl
CRL Distribution Point: http://crl.certigna.fr/servicesca.crl

Check the revocation status for certificate passtrans.impots.gouv.fr

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for passtrans.impots.gouv.fr

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

passtrans.impots.gouv.fr
passtrans-val.impots.gouv.fr

Other certificates including the domain name impots.gouv.fr

(limited to 100 certificates)
cfsfc.impots.gouv.fr
bmly.impots.gouv.fr
adel.impots.gouv.fr
cfspro-idp.impots.gouv.fr
www.impots.gouv.fr
teletd.impots.gouv.fr
inscriptionpro.impots.gouv.fr
cfsfc.impots.gouv.fr
www.impots.gouv.fr
www.impots.gouv.fr
cfspro.impots.gouv.fr
timbres.impots.gouv.fr
passtrans.impots.gouv.fr
cfspro.impots.gouv.fr
www3.impots.gouv.fr
consommation.timbres.impots.gouv.fr
cfspart.impots.gouv.fr
cfspart.impots.gouv.fr
inscriptionpart.impots.gouv.fr
assistance-en-ligne.integration.impots.gouv.fr
static.impots.gouv.fr
assistance-en-ligne.impots.gouv.fr
inscriptionpro.integration.impots.gouv.fr
www3.impots.gouv.fr
idp.impots.gouv.fr
wss-acl.integration.impots.gouv.fr
www.integration.impots.gouv.fr
cfsmsp.impots.gouv.fr
poseidon2.impots.gouv.fr
cfspro.impots.gouv.fr
static.impots.gouv.fr
inscriptionpro.impots.gouv.fr
teletd.impots.gouv.fr
cfspro-idp.impots.gouv.fr
passtrans.integration.impots.gouv.fr
idp.impots.gouv.fr
adel.integration.impots.gouv.fr
teletd-test.impots.gouv.fr
timbres.impots.gouv.fr
static.impots.gouv.fr
www.integration.impots.gouv.fr
inscriptionpro.impots.gouv.fr
inscriptionpro.impots.gouv.fr
www.impots.gouv.fr
teletd.integration.impots.gouv.fr
inscriptionpro.impots.gouv.fr
recherchesuccessionsvacantes.impots.gouv.fr
cfsfc.impots.gouv.fr
poseidon1.integration.impots.gouv.fr
timbres.impots.gouv.fr
www.impots.gouv.fr
inscriptionpro.integration.impots.gouv.fr
formuelassistteleservice.impots.gouv.fr
www.impots.gouv.fr
encheres-domaine.integration.impots.gouv.fr
poseidon1-test.integration.impots.gouv.fr
cfsmsp.impots.gouv.fr
formulaires.impots.gouv.fr
inscriptionpro.impots.gouv.fr
idp.impots.gouv.fr
recherchesuccessionsvacantes.integration.impots.gouv.fr
eai-cts-nc.impots.gouv.fr
www.impots.gouv.fr
rendezvous.impots.gouv.fr
idp.integration.impots.gouv.fr
poseidon2.impots.gouv.fr
idp.integration.impots.gouv.fr
static.impots.gouv.fr
cfsfc.impots.gouv.fr
www.impots.gouv.fr
payfip.impots.gouv.fr
www.impots.gouv.fr
cfsfc.impots.gouv.fr
poseidon1.impots.gouv.fr
www.impots.gouv.fr
static.impots.gouv.fr
payfip.impots.gouv.fr
timbres.impots.gouv.fr
consommation.timbres.impots.gouv.fr
gw.impots.gouv.fr
cfsfc.impots.gouv.fr
teletd.integration.impots.gouv.fr
static.impots.gouv.fr
poseidon2.impots.gouv.fr
cfspro.impots.gouv.fr
cfspart.integration.impots.gouv.fr
eai-fatca.impots.gouv.fr
payfip.integration.impots.gouv.fr
cfsmsp.impots.gouv.fr
formuelassistteleservice.impots.gouv.fr
retraitesdeletat.integration.impots.gouv.fr
cfspart.impots.gouv.fr
cfspro.impots.gouv.fr
encheres-domaine2.integration.impots.gouv.fr
www.impots.gouv.fr
static.impots.gouv.fr
static.impots.gouv.fr
inscriptionpro.impots.gouv.fr
www.tipi.integration.impots.gouv.fr
poseidon2.impots.gouv.fr

Certificate

The complete raw certificate details for passtrans.impots.gouv.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4jPkJwv8abZcWqxPDM9
ahEfn3NKjwz/WKBpj4F4JUXfzFz5pp5MS19qwbaOkRUERYstlssHE1A1oXng+TxQ
orj8WpoLpEaSSqDiiDDMA9aOddvWt+Py8TvdBTJu1K9vmOGznkRaql5nHA4aZvjQ
irsJpH8AuBmtZhYVuBylCYUNA1ldn2ERmtX04oc4CbkEQpBrIfTQ26pRewnAGbTY
qsHgdrbRGrLUbDO9QNdqaWOIWIvQhUCKtxUZHPeZUtHGGzQFg0PeO7+laP/0Fhi6
2n8nj4mk0f3JpgUs0XNi9n2SeWFmqbca0K//wNEPEvVTqif+m93P1z+rk8//AC7o
rQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 226334441923461195281347968768299446584
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DHIMYOTIS'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '0002 48146308100036'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.97
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'NTRFR-48146308100036'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Certigna Services CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-22 22:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-24 21:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'PARIS'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DIRECTION GENERALE DES FINANCES PUBLIQUES'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'passtrans.impots.gouv.fr'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'S307240581'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25693839828164947555028033137719851331347165389422436151609135945262194186960998190422883791436795895647910330831555191962277466078937196882773685052670865951847629022256194297937309538816665675603883729990585428502891031348322544411313556903039203393538632511695648254050356841616316793580311996785859215337181456042226533731370044202330788622278355330428476088285323162586319480234755178282343080795270612652383200236523956328006056072712140172193744018974282628182567244616192609088671522257827877940914824214311428713692985073753559283912227289987457013254800466981247077780228663017764190224566329400291958384813
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (215 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://autorite.certigna.fr/servicesca.der'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://autorite.dhimyotis.com/servicesca.der'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://servicesca.ocsp.certigna.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://servicesca.ocsp.dhimyotis.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName acec868f4b371cb87f171b19d0aee84ee3345c12
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.250.1.177.2.5.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.certigna.com/autorite-certification'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.dhimyotis.com/servicesca.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.certigna.fr/servicesca.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'passtrans.impots.gouv.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'passtrans-val.impots.gouv.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							db88223a6f86a08383cce9432c4f48b27be5e455
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		006321fac370ba81919cc170f1479489a613a67ebc43493de9cef8ae1f50c541b7b6e9718208a071721fbe61a400c7f67d84f24de8a12a326b5a4ff388ad7409658eb255778da36ab49374ceaed355ceef12820295d98b00c2f54a7a726f6296e4da2b7c14a1282b7dbf2616c98699842280a63aea94cf8c649f8d18fce5af5017900aa35e6eb3f4ee6eb912164191dd81640d480ffa26c038f367b2e5bd7c1ba035ff0e69e3af752c4a68e97558a99b858fea195f0b94930b63e8ef9ae44afb7184dbb9e1a1fff25ecacded904309d7800dc58c3330942b351135a9606b64d70579377a1a5346dbd91842ac89d079fa583df807c92e0ae83532fbe51be81da8ee30705a817e206f2b8bab045487d69ece783db877b5902d41136a3a51b78feb8c425cf262bd200a14df3ee4164c1ad30f80c61bcfbe1605ac79464d18a5e422b5a63ddb6e5650cf211e6490f57aaa2a9a74106931e312fb2a7f8ef70ea2dd23fe64b97699c5c377c3c91741bf898ec83af4eefa46e50de24276335331a30d932b4a585c3fddd65d3d01971c39b5f1beecb745e7159038b31fb861eeda2addae90cb1daaea075b1723204ae85e04c9aa504f7f0db645cc8c495e1208e84e23a5363d428299ecc960290c79b3d922a59864f0cb341bcbcaa530a929800ad71ed4e02fe59f68766233b61b13f5bad0ed13886b905352844fda374c7d1bbdbf4457de