rec-portail.afpa.fr

Issued by R3

About this certificate

This digital certificate with serial number 03:ea:3d:b4:5a:c4:80:68:2d:6d:33:ba:be:83:fb:f6:bb:0a was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=rec-portail.afpa.fr

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:ea:3d:b4:5a:c4:80:68:2d:6d:33:ba:be:83:fb:f6:bb:0a
Serial Number (int): 341044951016943080733031059114750335433482
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: d5:17:09:32:77:75:23:13:88:d9:31:ec:c2:17:e2:8d:f6:8b:5d:20
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 08:eb:2b:eb:e1:25:61:f2:34:c4:80:71:c3:2c:1d:49:df:77:96:bd
Fingerprint (sha256): 15:ea:4f:ae:db:e0:07:5d:3c:e2:84:02:74:a9:22:d1:63:c5:53:37:dd:08:47:b3:38:59:9a:02:53:69:89:df

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate rec-portail.afpa.fr

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for rec-portail.afpa.fr

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

rec-portail.afpa.fr

Other certificates including the domain name afpa.fr

(limited to 100 certificates)
mooc.afpa.fr
hebergement-afpa.fr
*.afpa.fr
access.afpa.fr
wconvivio.afpa.fr
*.afpa.fr
copilote-sept.afpa.fr
www.questionnaires.hebergement-afpa.fr
www.tsgp.afpa.fr
mooc.afpa.fr
convivio.afpa.fr
hebergement-afpa.fr
*.afpa.fr
manager.eforpro.afpa.fr
mooc.afpa.fr
www.pprod.tsgp.afpa.fr
*.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
moocfle.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
eforpro.afpa.fr
bnr.afpa.fr
www.certification.afpa.fr
mooc.afpa.fr
rec-portail.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
mooc.afpa.fr
*.afpa.fr
moocfle.afpa.fr
hebergement-afpa.fr
www.rapportactivite.hebergement-afpa.fr
evenement.afpa.fr
tr.infos.afpa.fr
mooc.afpa.fr
www.admin.di.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
convivio.afpa.fr
www.admin.di.afpa.fr
www.enquetes.afpa.fr
eforpro.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
wslync.afpa.fr
*.afpa.fr
mooc.afpa.fr
preprod-bnr.afpa.fr
stream.tsgp.afpa.fr
www.banque.di.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
rapportactivite.hebergement-afpa.fr
www.catalogues.afpa.fr
mooc.afpa.fr
www.enquetes.afpa.fr
tr.portail.afpa.fr
WWW.MONPARCOURS.TSGP.AFPA.FR
www.certification.afpa.fr
*.afpa.fr
hebergement-afpa.fr
access.afpa.fr
convivio.afpa.fr
www.enquetes.afpa.fr
moocfle.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
moocfle.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
moocfle.afpa.fr
www.afpa.fr
afpasupplierportail.afpa.fr
stream.tsgp.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
eforpro.afpa.fr
videos.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
www.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
www.afpa.fr
www.catalogues.afpa.fr
www.admin.di.afpa.fr
bnr.afpa.fr
tr.portail.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
habilitation.eforpro.afpa.fr
www.afpa.fr
moocfle.afpa.fr
*.afpa.fr
eforpro.afpa.fr
hebergement-afpa.fr
videos.afpa.fr
*.afpa.fr
*.afpa.fr
metis.afpa.fr
tr.portail.afpa.fr
www.banque.di.afpa.fr
bnr.afpa.fr
san-13-s50.tlsprovisioning.exacttarget.com
mooc.afpa.fr
www.admin.di.afpa.fr
afpasupplierportail.afpa.fr
moocfle.afpa.fr
www.monparcours.tsgp.afpa.fr
www.afpa.fr

Certificate

The complete raw certificate details for rec-portail.afpa.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5xTUXfMpKVd/3DaHji4y
csFQZTsMCbIHH7gg1guPVbmLGIquxZaXUvtFOfMvh7LmwdrTKp+lpwNwydHboGbb
Vt8IaLpUYKamQkrhUKm6Nvbk8H0TMJ+M2GCAc0MYrVVlkbd9WI+jrW70BvYd4pD2
DYICo7v6Vv6HIse4eQ0eGeSt4wYXIwEUQu0zNRGzk6blWqrHik65r+mhPWD4hb24
9dCUDzz0ZEeWCA+Bt+rP+dNW11UHDwsJ0G6xuxsom9EKXVsLhX8e8Fm2Br1OTiJs
sxK7HYP++O7oivFd1kNIZp+fWI36ydhSLKRtdVIAO9PrgNcU8Vtod/MN82YWKUQE
pQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 341044951016943080733031059114750335433482
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-03 19:13:24 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-02 19:13:23 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rec-portail.afpa.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29171319885307661505858237212844123681804091341541241256578372685303311761097862053419650828076903914424210663997312216295581358860607013270826364804371286589513736848736434256754075511459607991327651394481575008476156312616133345310306878111006818658186017388361829262359262664675816634820359499012741930907283666479447772398034163463669701293184203897374561703886697878619030206416873873977324956435074519317845175961236014186209935425035169788812405090219596197554175427190586625970413218981376454791073182751563359491465076688411786668885192554404089098006848841855740836473461029686332003354215431157711431271589
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d51709327775231388d931ecc217e28df68b5d20
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rec-portail.afpa.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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