staging.epublimmo.sncf

Issued by R3

About this certificate

This digital certificate with serial number 03:44:c3:2e:eb:82:fe:e1:68:c3:ea:7e:3d:8b:79:f2:34:b8 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=staging.epublimmo.sncf

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:44:c3:2e:eb:82:fe:e1:68:c3:ea:7e:3d:8b:79:f2:34:b8
Serial Number (int): 284735501827482906333209401369666866263224
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: d1:b1:87:55:06:25:cb:e4:77:c5:36:ef:53:7d:c7:9e:91:f0:61:f2
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 0f:f3:78:b7:0d:f9:c7:e5:4b:1a:69:44:c7:ef:0c:21:cb:6f:e2:a4
Fingerprint (sha256): 0f:24:9d:f6:b4:37:a1:9c:18:6f:a7:7c:d0:53:26:32:27:ab:61:f0:fe:3a:50:bd:54:66:dd:a1:e2:52:27:76

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate staging.epublimmo.sncf

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for staging.epublimmo.sncf

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

staging.epublimmo.sncf

Other certificates including the domain name epublimmo.sncf

(limited to 100 certificates)
epublimmo.sncf
staging.epublimmo.sncf
epublimmo.sncf
staging.epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
www.epublimmo.sncf
www.epublimmo.sncf

Certificate

The complete raw certificate details for staging.epublimmo.sncf in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzrQHi8+dxESiC0YpaOtX
O9EkuLk9iM1w4Kbm6tnqj/XaD44DWlHiLk9sSU/1daAdpI7xr0M/msOceIe2oNtE
UuVtJ7lBKB0NK5ypXF6tGWuqpPDT1kQ8pL+l0m8gn/Ezghe6JFUV+7eaWgjzyUiQ
6LWRv7Hvnmcpet7efJLYHyRQGBIEyTNShjDCegsE+/FVeZxIky7K3jCJRaLuOXuh
cxyGdYEoXnuC2e77N3v/a06s416eF4XnmLpagGcdrqV7RKGvUu4Hq3FqnSQAn5ly
TiGB/pHFiMqjZZ1gslH2ixDMzeVjCA5GaJa3pxE5FCHVJgEcfXkLaB6DDOiawTDc
jQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 284735501827482906333209401369666866263224
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-18 03:05:12 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-18 03:05:11 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging.epublimmo.sncf'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26093866666885409717188121428074090396824356256483855153330078582302169319401898824030379568821421856933467921234368603576255877804795267372512222514994856719261466419148775209240867355069964373663915904469864069896429113787284280600499172299672616430034771661870837307745547995877044132684052038051068812615845574413395844677225764607543198631526486992352041645363593432689519143348083649389932746473792584823762137636849126383493822322687755220160383606143706762067248223301898480571560142641712446761599016654812377971931412985653289988269284257893303742901373937186866958681599833188219760146497631718806725385357
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d1b187550625cbe477c536ef537dc79e91f061f2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.epublimmo.sncf'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018dba63b3a80000040300483046022100b141674877f08d43259796e31ee9ad30f4a687c78e955586a95d7e86f32500ed022100a18aadaca5bfd6b284c952f38fd0a6f0a101478898dec7c4237e9e0610e3d9bd00750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018dba63b605000004030046304402207b7e99d7bc2d04bc9f9c247ee7996a2207992a5794537b1c0ff1949ce87d09d3022036ece37e5c696a47a332c47953d273b2b6d32cdcb88ebdeabf1496bf3e6bce64
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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