legaminbastille.fr
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:3f:e7:13:a2:65:3c:45:39:60:9f:fe:5e:9b:d2:6c:66:82 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=legaminbastille.fr
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:3f:e7:13:a2:65:3c:45:39:60:9f:fe:5e:9b:d2:6c:66:82Serial Number (int): 283081800525737543859369466886858939852418
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5c:c8:18:57:60:bf:20:76:d1:58:d0:00:82:23:04:72:14:b8:48:d1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 67:5b:20:b7:16:f9:6b:2d:98:04:6d:c0:a9:ae:52:bc:87:a5:36:21
Fingerprint (sha256): 1a:8f:67:03:b0:48:04:85:af:7a:e5:0d:76:b7:05:42:79:cb:10:e6:b2:40:2b:6a:97:c8:b8:ee:4d:24:47:2d
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate legaminbastille.fr
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for legaminbastille.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
legaminbastille.fr
www.legaminbastille.fr
www.legaminbastille.fr
Other certificates including the domain name legaminbastille.fr
(limited to 100 certificates)
www.legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
legaminbastille.fr
Certificate
The complete raw certificate details for legaminbastille.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAz/nE6JlPEU5YJ/+XpvSbGaCMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAxMTgyMzA2NTdaFw0x OTA0MTgyMzA2NTdaMB0xGzAZBgNVBAMTEmxlZ2FtaW5iYXN0aWxsZS5mcjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALakE/waFFug+YH/AkOONeWSrJ6A r3DQ2Q9alGEw2Fuptyl8K6wkhlEZR0Y83vFHMqM694iy2qftJpiBzTXZwh/fTAfO xFHjiBvbfBNSALSABt9ASHY3Pf7Vo7KeXrfz73uIo0/3YWTFd22qP1y1NOvoIvcG 3LB23p1aXT01KymgTk8DbmhdwRQM3YwA2EXS3IDyitdRBx+iEn1kZ0Fq/zw6IEfe bw8P4mtuQSlZVWXWrUGnhmo0kF0jQNNy2Fr2Er2szVzLO92CNp6A/LLUErj3kbDu ylpLezN3G5iwHHOHfTzeNd+NwH1hKh3srrf3vc0TkVT9dQEL9r/I8bnSsB0CAwEA AaOCAn4wggJ6MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUXMgYV2C/IHbRWNAAgiME chS4SNEwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzA1BgNVHREELjAsghJsZWdhbWluYmFzdGlsbGUuZnKCFnd3dy5sZWdh bWluYmFzdGlsbGUuZnIwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggED BgorBgEEAdZ5AgQCBIH0BIHxAO8AdgDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8o kwGd3fHb/gAAAWhjbpZCAAAEAwBHMEUCIQCYNNGKcGpJnQRY84gU4atyB6BkCdjV SgAk5EK8z0IUywIgZCdbdbayNIudJEtEOnc8MS9Fg3EMZohk7wEQC+R9xPsAdQBj 8tvN6DvMLM8LcoQnV2szpI1hd4+9daY4scdoVEvYjQAAAWhjbpRSAAAEAwBGMEQC IEdK4Cy80OdfuM27PJVO9b//FDZnz5DoJNBHI5mc8QpCAiAO0Un1kFdxbfdsdBIl d7I9/8Edea2N7cwn1JYgjYFcIjANBgkqhkiG9w0BAQsFAAOCAQEAG8uiE3EPUqFp NXKBXJMUcNaBOe9mINHG8k6/Ly7WrAdvzOt7R3+BDunk12uTmMHQKYobU3FndyRt HDboMJI5vltwGvV4adiYvqH8wtvAY2Pj4eVUhWqAC/HyMlAWJeLnROtBsn95QiZJ MbwBbVR4FNR3xI0atkeIU2MrQG+5Tt5/8zzX7k6Gq2l1V5s+UH9s4SoiGBXS+19z mWeYSjlB8o/HOWjgjWX1XJ2oahRUQU5y9ZKmn91fGGme5xbDoopHqRLpcXwhOni/ djodJ5Rl4Q8thX7gHZk0ZFo7GZwKqvr6OkmBzcI5OsjITc6lWZirtG38A+F9YUh1 7rp/Skza4w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqQT/BoUW6D5gf8CQ441 5ZKsnoCvcNDZD1qUYTDYW6m3KXwrrCSGURlHRjze8Ucyozr3iLLap+0mmIHNNdnC H99MB87EUeOIG9t8E1IAtIAG30BIdjc9/tWjsp5et/Pve4ijT/dhZMV3bao/XLU0 6+gi9wbcsHbenVpdPTUrKaBOTwNuaF3BFAzdjADYRdLcgPKK11EHH6ISfWRnQWr/ PDogR95vDw/ia25BKVlVZdatQaeGajSQXSNA03LYWvYSvazNXMs73YI2noD8stQS uPeRsO7KWkt7M3cbmLAcc4d9PN41343AfWEqHeyut/e9zRORVP11AQv2v8jxudKw HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 283081800525737543859369466886858939852418 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-18 23:06:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-18 23:06:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'legaminbastille.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23056281413483868098876280005321735493010912270252798691978546512806487119231826746091313369878796483391148203583033166162304358912484799263177057122212226959541380573576049752582144007576349393008547191839666485870869013707631451047599775938126944799919569906612843329980208956691051465080151776763797922641417124668635316996117397798755712468082599168946612913623701635368979036411817994720242826199902386469580670596595466194415541073473973444221033195653310074845423970413411381159230093603700453869792987235440983704467679805486672365953430671910282629695813907414537425986602729001874966319959183862256039538717 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5cc8185760bf2076d158d0008223047214b848d1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legaminbastille.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.legaminbastille.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000168636e964200000403004730450221009834d18a706a499d0458f38814e1ab7207a06409d8d54a0024e442bccf4214cb022064275b75b6b2348b9d244b443a773c312f4583710c668864ef01100be47dc4fb00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000168636e945200000403004630440220474ae02cbcd0e75fb8cdbb3c954ef5bfff143667cf90e824d04723999cf10a4202200ed149f59057716df76c74122577b23dffc11d79ad8dedcc27d496208d815c22 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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