staging.epublimmo.sncf
Issued by R3
About this certificate
This digital certificate with serial number 03:44:c3:2e:eb:82:fe:e1:68:c3:ea:7e:3d:8b:79:f2:34:b8 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=staging.epublimmo.sncf
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:44:c3:2e:eb:82:fe:e1:68:c3:ea:7e:3d:8b:79:f2:34:b8Serial Number (int): 284735501827482906333209401369666866263224
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d1:b1:87:55:06:25:cb:e4:77:c5:36:ef:53:7d:c7:9e:91:f0:61:f2
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0f:f3:78:b7:0d:f9:c7:e5:4b:1a:69:44:c7:ef:0c:21:cb:6f:e2:a4
Fingerprint (sha256): 0f:24:9d:f6:b4:37:a1:9c:18:6f:a7:7c:d0:53:26:32:27:ab:61:f0:fe:3a:50:bd:54:66:dd:a1:e2:52:27:76
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate staging.epublimmo.sncf
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for staging.epublimmo.sncf
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
staging.epublimmo.sncf
Other certificates including the domain name epublimmo.sncf
(limited to 100 certificates)
epublimmo.sncf
staging.epublimmo.sncf
epublimmo.sncf
staging.epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
www.epublimmo.sncf
www.epublimmo.sncf
staging.epublimmo.sncf
epublimmo.sncf
staging.epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
drupal8.publimmo.sncf.com.prod1.rff.lbn.fr
epublimmo.sncf
www.epublimmo.sncf
www.epublimmo.sncf
Certificate
The complete raw certificate details for staging.epublimmo.sncf in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE+TCCA+GgAwIBAgISA0TDLuuC/uFow+p+PYt58jS4MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTgwMzA1MTJaFw0yNDA1MTgwMzA1MTFaMCExHzAdBgNVBAMT FnN0YWdpbmcuZXB1YmxpbW1vLnNuY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDOtAeLz53ERKILRilo61c70SS4uT2IzXDgpubq2eqP9doPjgNaUeIu T2xJT/V1oB2kjvGvQz+aw5x4h7ag20RS5W0nuUEoHQ0rnKlcXq0Za6qk8NPWRDyk v6XSbyCf8TOCF7okVRX7t5paCPPJSJDotZG/se+eZyl63t58ktgfJFAYEgTJM1KG MMJ6CwT78VV5nEiTLsreMIlFou45e6FzHIZ1gShee4LZ7vs3e/9rTqzjXp4XheeY ulqAZx2upXtEoa9S7gercWqdJACfmXJOIYH+kcWIyqNlnWCyUfaLEMzN5WMIDkZo lrenETkUIdUmARx9eQtoHoMM6JrBMNyNAgMBAAGjggIYMIICFDAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQC MAAwHQYDVR0OBBYEFNGxh1UGJcvkd8U271N9x56R8GHyMB8GA1UdIwQYMBaAFBQu sxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYV aHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5s ZW5jci5vcmcvMCEGA1UdEQQaMBiCFnN0YWdpbmcuZXB1YmxpbW1vLnNuY2YwEwYD VR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdwCi4r/W Ht4vLweg1k5tN6fcZUOwxrUuotq3iviabfUX2AAAAY26Y7OoAAAEAwBIMEYCIQCx QWdId/CNQyWXluMe6a0w9KaHx46VVYapXX6G8yUA7QIhAKGKraylv9ayhMlS84/Q pvChAUeImN7HxCN+ngYQ49m9AHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/m Z0xaOnQAAAGNumO2BQAABAMARjBEAiB7fpnXvC0EvJ+cJH7nmWoiB5kqV5RTexwP 8ZSc6H0J0wIgNuzjflxpakejMsR5U9JzsrbTLNy4jr3qvxSWvz5rzmQwDQYJKoZI hvcNAQELBQADggEBAF4pXB+W6fefVlTXxoOTKaWnNWuhFve60WGNgMarQ0SXasjf cqthiX9xSRAh4YXTD3wXUzFWvBA4/lHyyljm8XtxlLRe4bCGrb1oPe8Hqf9CDr1l /orYA8qHuvu6z0F+ztTxWJ+5xnJA/AR2ON1mWUF8rOQqRWr2AHffQ8SL+ysKR3qS zqmHVphqh8e0Y2/ryprBxtrrIdq6ClmT2qabdi++WN1XnPBkOEO4U2tdeO52lXeh ixyeine4ydQ5yNNXOy07AI34tdvfWaRs3rdjNszD+zg+2d9Hx9kZWi+LYqrkLa01 c4OX1iQhvYrok0JMJdxDv+Od/juEvfckjs/AJDQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzrQHi8+dxESiC0YpaOtX O9EkuLk9iM1w4Kbm6tnqj/XaD44DWlHiLk9sSU/1daAdpI7xr0M/msOceIe2oNtE UuVtJ7lBKB0NK5ypXF6tGWuqpPDT1kQ8pL+l0m8gn/Ezghe6JFUV+7eaWgjzyUiQ 6LWRv7Hvnmcpet7efJLYHyRQGBIEyTNShjDCegsE+/FVeZxIky7K3jCJRaLuOXuh cxyGdYEoXnuC2e77N3v/a06s416eF4XnmLpagGcdrqV7RKGvUu4Hq3FqnSQAn5ly TiGB/pHFiMqjZZ1gslH2ixDMzeVjCA5GaJa3pxE5FCHVJgEcfXkLaB6DDOiawTDc jQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 284735501827482906333209401369666866263224 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-18 03:05:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-18 03:05:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging.epublimmo.sncf' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26093866666885409717188121428074090396824356256483855153330078582302169319401898824030379568821421856933467921234368603576255877804795267372512222514994856719261466419148775209240867355069964373663915904469864069896429113787284280600499172299672616430034771661870837307745547995877044132684052038051068812615845574413395844677225764607543198631526486992352041645363593432689519143348083649389932746473792584823762137636849126383493822322687755220160383606143706762067248223301898480571560142641712446761599016654812377971931412985653289988269284257893303742901373937186866958681599833188219760146497631718806725385357 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d1b187550625cbe477c536ef537dc79e91f061f2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.epublimmo.sncf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018dba63b3a80000040300483046022100b141674877f08d43259796e31ee9ad30f4a687c78e955586a95d7e86f32500ed022100a18aadaca5bfd6b284c952f38fd0a6f0a101478898dec7c4237e9e0610e3d9bd00750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018dba63b605000004030046304402207b7e99d7bc2d04bc9f9c247ee7996a2207992a5794537b1c0ff1949ce87d09d3022036ece37e5c696a47a332c47953d273b2b6d32cdcb88ebdeabf1496bf3e6bce64 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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