vaxi.toulouse.fr

- COMMUNE DE TOULOUSE -

Issued by thawte SSL CA - G2

About this certificate

This digital certificate with serial number 51:28:b0:78:aa:e2:2e:94:3b:75:08:1a:06:d0:12:d4 was issued on by thawte, Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

COMMUNE DE TOULOUSE

Organization: COMMUNE DE TOULOUSE
Organization unit: MAIRIE
State / Province: Haute Garonne
Locality: TOULOUSE
Country: FR

thawte, Inc.

Organization: thawte, Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 51:28:b0:78:aa:e2:2e:94:3b:75:08:1a:06:d0:12:d4
Serial Number (int): 107878738797275212084186959995156304596
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60

Fingerprint (sha1): bf:13:84:13:b2:95:36:a1:ec:69:53:42:74:22:42:f4:d4:67:a8:13
Fingerprint (sha256): 1a:8f:91:e2:e8:2e:1c:ea:d1:29:e8:82:ff:e0:01:85:6c:7e:eb:3c:0f:52:05:bb:d2:48:1d:cc:b8:8c:9f:28

Issuing Certificate URL: http://tj.symcb.com/tj.crt

Revocation information

OCSP Server: http://tj.symcd.com
CRL Distribution Point: http://tj.symcb.com/tj.crl

Check the revocation status for certificate vaxi.toulouse.fr

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for vaxi.toulouse.fr

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

vaxi.toulouse.fr

Other certificates including the domain name toulouse.fr

(limited to 100 certificates)
dsirev-sep.applis.toulouse.fr
cast.extranet.toulouse.fr
api-culture.toulouse.fr
cast.extranet.toulouse.fr
onct.toulouse.fr
oxyadpermi.integration.toulouse.fr
saintraymond.toulouse.fr
axelws.applis.toulouse.fr
saintraymond.toulouse.fr
tms.opacweb.fr
villachiragan.saintraymond.toulouse.fr
*.plan.toulouse.fr
axelnet.applis.toulouse.fr
depotfichier.extranet.toulouse.fr
crr-enseignants.extranet.toulouse.fr
saintraymond.toulouse.fr
depotfichier.extranet.toulouse.fr
*.plan.toulouse.fr
saintraymond.toulouse.fr
archives.toulouse.fr
vaxi.toulouse.fr
tms.opacweb.fr
documents.toulouse.fr
conservatoirerayonnementregional.toulouse.fr
api-culture.toulouse.fr
internet-collectivites.toulouse.fr
billetterie.musee-saint-raymond.toulouse.fr
rosalis.bibliotheque.toulouse.fr
documents.presse.toulouse.fr
urban-hist.toulouse.fr
urban-hist.toulouse.fr
api-culture.toulouse.fr
cas.toulouse.fr
wifi.toulouse.fr
*.integration.toulouse.fr
saintraymond.toulouse.fr
urban-hist-gestion.toulouse.fr
voeux2019.toulouse.fr
oxyadpermi.extranet.toulouse.fr
rio-loco.org
toulouse.fr
tms.opacweb.fr
messagerie.toulouse.fr
vaxi.toulouse.fr
internet-collectivites.toulouse.fr
saintraymond.toulouse.fr
agendarencontres.applis.toulouse.fr
etatcivil.toulouse.fr
tms.opacweb.fr
oxyadpermi.integration.toulouse.fr
toulouse.fr
resultats.elections.toulouse.fr
crr-enseignants.extranet.toulouse.fr
cas.toulouse.fr
vaxi.toulouse.fr
axelnet.applis.toulouse.fr
retraitfichier.extranet.toulouse.fr
tms.opacweb.fr
urban-hist-gestion.toulouse.fr
toulouse-metropole.fr
sesame.extranet.toulouse.fr
archives.toulouse.fr
saintraymond.toulouse.fr
documents.presse.toulouse.fr
resultats.elections.toulouse.fr
messagerie.integration.toulouse.fr
saintraymond.toulouse.fr
*.integration.toulouse.fr
deliberations.toulouse.fr
5ansdeprogres.toulouse.fr
dessinemoitoulouse.fr
rosalis.bibliotheque.toulouse.fr
changemdp.extranet.toulouse.fr
retraitfichier.extranet.toulouse.fr
etatcivil.toulouse.fr
onct.toulouse.fr
voeux2019.toulouse.fr
saintraymond.toulouse.fr
voeux2019.toulouse.fr
rosalis.bibliotheque.toulouse.fr
axelnet.applis.toulouse.fr
chamois.toulouse.fr
oxyadpermi.integration.toulouse.fr
tms.opacweb.fr
*.integration.toulouse.fr
archives.toulouse.fr
5ansdeprogres.toulouse.fr
rdvenligne.toulouse.fr
extranet.museum.toulouse.fr
resultats.elections.toulouse.fr
archives.toulouse.fr
elections.applis.toulouse.fr
urban-hist.toulouse.fr
changemdp.extranet.toulouse.fr
retraitfichier.extranet.toulouse.fr
billetterie.julesjulien.toulouse.fr
authsso.extranet.toulouse.fr
urban-hist-gestion.toulouse.fr
jeparticipe.metropole.toulouse.fr
toulouse.fr

Certificate

The complete raw certificate details for vaxi.toulouse.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXh7jf0gr1OcCzcXrj8Z
rURIOdAKFb7AUF8U+dkGDpcNEQq3HGDJN0OvAQX452appfextWpYy/Uml0FCLw3F
UIZpP+51Y1itTKDug8OlJe9rDdRvRKUCdq9cDpTwIvdRKh7TlTruBlNAqD3RFr05
aaxR60LN2c1la7hnSuv7is0wEspG5aMhp142bHbkYppiNukzgPXe5+CQK/QC+gBK
peXTA8nkO4BfdWBi2mQrDz87nL52qiqPsInBIlxfU3zqLnYmO/FxrnsPctscfE7W
OT05rktnPehdtOTjTmu8toNAfKWuqH9tAdv5y4iIc189WcYSwWMq9Y2XBVPa0gz8
FQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 107878738797275212084186959995156304596
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-06 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-05 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Haute Garonne'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'TOULOUSE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'COMMUNE DE TOULOUSE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'MAIRIE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'vaxi.toulouse.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22403592180795127829580298910524635443694170331586678049840513054952391401235719270969383799961943568033063834490037323513601145119822454026829572956224283948462310051974502240636849819718196506448653100991788492536675217063381985359651251546185637670428252042217782883454511328720050567623579310227132740117779077615936681124503882531185212276912871311185863229517681447626287938104662758665237889519476119747282300903588924307955565177519564009786079917051431653332373625211480801502826114405762092717912555132326356129749459189029693357972057383937441545736082443913111308127422792786435818525243645391018350410773
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vaxi.toulouse.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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