bo.opacweb.io
Issued by R3
About this certificate
This digital certificate with serial number 04:8e:16:ae:4a:56:85:c9:2a:3d:bc:0d:56:d7:e7:e5:6f:35 was issued on by Let's Encrypt.
With 73 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=bo.opacweb.io
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:8e:16:ae:4a:56:85:c9:2a:3d:bc:0d:56:d7:e7:e5:6f:35Serial Number (int): 396799387813128238953830560418235590995765
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e9:6a:7a:c9:c0:ef:4f:e0:b9:a9:b0:66:f4:84:89:38:0f:39:27:03
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c0:bd:74:a6:4d:13:cc:81:dd:96:a7:fc:b8:2c:d2:b6:83:e0:06:c6
Fingerprint (sha256): 27:a0:78:8b:be:2b:e2:43:08:a0:97:0d:56:f6:e5:ea:c7:ca:ee:2b:23:b8:5b:12:f0:d8:f2:53:0b:30:6e:4e
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate bo.opacweb.io
73
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bo.opacweb.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
augustins.opacweb.io
bo.opacweb.io
bota-collections.museum-grenoble.fr
botanique-museum-angers.opacweb.io
capc-bordeaux.opacweb.fr
catzarts.beauxartsparis.fr
centrederessources.museedelaposte.fr
collection-museumtoulouse.opacweb.io
collections-mba.nancy.opacweb.io
collections-musees.cholet.fr
collections-musees.nyon.ch
collections.domaine-de-sceaux.hauts-de-seine.fr
collections.mahn.ch
collections.mba-lyon.fr
collections.mba-pau.opacweb.io
collections.mbaq.fr
collections.museedelaposte.fr
collections.musees.marseille.opacweb.io
collections.museum-grenoble.fr
collections.museum-histoirenaturelle.opacweb.io
collections.museumaquariumdenancy.eu
collections.vallee-aux-loups.hauts-de-seine.fr
collectionsmusees.vaucluse.fr
collectionspatrimoniales.monnaiedeparis.fr
demo.opacweb.io
documentation-sarreguemines.opacweb.io
documentationmusees.vaucluse.fr
dulama.opacweb.io
ensba.opacweb.io
ferudessciences.opacweb.io
geologie-museum-angers.opacweb.io
mba-pau.opacweb.fr
mhc-opacweb.lille.fr
min-collections.museum-grenoble.fr
mobydoc.opacweb.fr
modydev.opacweb.io
musba-bordeaux-bibliotheque.opacweb.fr
musba-bordeaux.opacweb.fr
musee-antoine-vivenel.opacweb.fr
musee-aquitaine.opacweb.fr
musee-artsetindustrie-saintetienne.opacweb.io
musee-breton-oai.finistere.fr
musee-breton.finistere.fr
musee-carouge.opacweb.io
musee-de-la-figurine-historique-compiegne.opacweb.fr
musee-des-arts-anciens.collections.opacweb.io
musee-dunkerque.opacweb.io
musee-evreux.opacweb.io
musee-goupil.opacweb.fr
musee-test.opacweb.io
museedelaresistance-limoges.opacweb.io
museenouvellecaledonie-collections.gouv.nc
museenouvellecaledonie-ipkd.gouv.nc
musees.boulognebillancourt.com
musees.ville-poissy.opacweb.io
museum-angers.opacweb.io
museum.auxerre.fr
museumtoulouse.opacweb.io
ow-mba.angers.fr
paleo-collections.museum-grenoble.fr
pba-opacweb.lille.fr
peterboroughmuseum.opacweb.io
prehistoire-museum-angers.opacweb.io
provincedenamur-collection.opacweb.fr
sarreguemines-museum.opacweb.io
www.augustins.org
www.collections-musee-rops.be
www.lemiv.fr
www.memoire14-45.eu
www.musee-conde.fr
www.museegoya.fr
www.sarreguemines-museum.fr
zoo-collections.museum-grenoble.fr
bo.opacweb.io
bota-collections.museum-grenoble.fr
botanique-museum-angers.opacweb.io
capc-bordeaux.opacweb.fr
catzarts.beauxartsparis.fr
centrederessources.museedelaposte.fr
collection-museumtoulouse.opacweb.io
collections-mba.nancy.opacweb.io
collections-musees.cholet.fr
collections-musees.nyon.ch
collections.domaine-de-sceaux.hauts-de-seine.fr
collections.mahn.ch
collections.mba-lyon.fr
collections.mba-pau.opacweb.io
collections.mbaq.fr
collections.museedelaposte.fr
collections.musees.marseille.opacweb.io
collections.museum-grenoble.fr
collections.museum-histoirenaturelle.opacweb.io
collections.museumaquariumdenancy.eu
collections.vallee-aux-loups.hauts-de-seine.fr
collectionsmusees.vaucluse.fr
collectionspatrimoniales.monnaiedeparis.fr
demo.opacweb.io
documentation-sarreguemines.opacweb.io
documentationmusees.vaucluse.fr
dulama.opacweb.io
ensba.opacweb.io
ferudessciences.opacweb.io
geologie-museum-angers.opacweb.io
mba-pau.opacweb.fr
mhc-opacweb.lille.fr
min-collections.museum-grenoble.fr
mobydoc.opacweb.fr
modydev.opacweb.io
musba-bordeaux-bibliotheque.opacweb.fr
musba-bordeaux.opacweb.fr
musee-antoine-vivenel.opacweb.fr
musee-aquitaine.opacweb.fr
musee-artsetindustrie-saintetienne.opacweb.io
musee-breton-oai.finistere.fr
musee-breton.finistere.fr
musee-carouge.opacweb.io
musee-de-la-figurine-historique-compiegne.opacweb.fr
musee-des-arts-anciens.collections.opacweb.io
musee-dunkerque.opacweb.io
musee-evreux.opacweb.io
musee-goupil.opacweb.fr
musee-test.opacweb.io
museedelaresistance-limoges.opacweb.io
museenouvellecaledonie-collections.gouv.nc
museenouvellecaledonie-ipkd.gouv.nc
musees.boulognebillancourt.com
musees.ville-poissy.opacweb.io
museum-angers.opacweb.io
museum.auxerre.fr
museumtoulouse.opacweb.io
ow-mba.angers.fr
paleo-collections.museum-grenoble.fr
pba-opacweb.lille.fr
peterboroughmuseum.opacweb.io
prehistoire-museum-angers.opacweb.io
provincedenamur-collection.opacweb.fr
sarreguemines-museum.opacweb.io
www.augustins.org
www.collections-musee-rops.be
www.lemiv.fr
www.memoire14-45.eu
www.musee-conde.fr
www.museegoya.fr
www.sarreguemines-museum.fr
zoo-collections.museum-grenoble.fr
Other certificates including the domain name opacweb.io
(limited to 100 certificates)
Certificate
The complete raw certificate details for bo.opacweb.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIINkzCCDHugAwIBAgISBI4WrkpWhckqPbwNVtfn5W81MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTkxNjMzNDhaFw0yNDAzMTgxNjMzNDdaMBgxFjAUBgNVBAMT DWJvLm9wYWN3ZWIuaW8wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf zvqgou58wTp4vSFS9EJHncBzO0oM610ln60GHYbbvw81bRW0IeQyn7gWDtJPFkZy dcKyBVAPQwwyt+521cBhZQdCS4D/EQn9X6Ewp3/GkMSEd6NdC/mOYgduwV1fQOgU sSD3rS4Gk15VH6NvrvssHJD/LHA9sqdHUUHB72H+AypUjTHndU/ahIKl2/uaNadz bNKj7YVpwJ0L5XMLpFafjT5OzmKIpIdEcxM0AFWw1TCkImSlxSVocJHDG30OF7ZJ C6ynr2ie9GUhFh2eENAJQAHiwXZY9j0iSMDBMLKQEdViOeAmNiet8blFpkNdeK9k i7fMVDTnocfPNjqKMiLDAgMBAAGjggq7MIIKtzAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFOlqesnA70/guamwZvSEiTgPOScDMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MIIIwQYDVR0RBIIIuDCCCLSCFGF1Z3VzdGlucy5vcGFjd2ViLmlvgg1iby5vcGFj d2ViLmlvgiNib3RhLWNvbGxlY3Rpb25zLm11c2V1bS1ncmVub2JsZS5mcoIiYm90 YW5pcXVlLW11c2V1bS1hbmdlcnMub3BhY3dlYi5pb4IYY2FwYy1ib3JkZWF1eC5v cGFjd2ViLmZyghpjYXR6YXJ0cy5iZWF1eGFydHNwYXJpcy5mcoIkY2VudHJlZGVy ZXNzb3VyY2VzLm11c2VlZGVsYXBvc3RlLmZygiRjb2xsZWN0aW9uLW11c2V1bXRv dWxvdXNlLm9wYWN3ZWIuaW+CIGNvbGxlY3Rpb25zLW1iYS5uYW5jeS5vcGFjd2Vi Lmlvghxjb2xsZWN0aW9ucy1tdXNlZXMuY2hvbGV0LmZyghpjb2xsZWN0aW9ucy1t dXNlZXMubnlvbi5jaIIvY29sbGVjdGlvbnMuZG9tYWluZS1kZS1zY2VhdXguaGF1 dHMtZGUtc2VpbmUuZnKCE2NvbGxlY3Rpb25zLm1haG4uY2iCF2NvbGxlY3Rpb25z Lm1iYS1seW9uLmZygh5jb2xsZWN0aW9ucy5tYmEtcGF1Lm9wYWN3ZWIuaW+CE2Nv bGxlY3Rpb25zLm1iYXEuZnKCHWNvbGxlY3Rpb25zLm11c2VlZGVsYXBvc3RlLmZy gidjb2xsZWN0aW9ucy5tdXNlZXMubWFyc2VpbGxlLm9wYWN3ZWIuaW+CHmNvbGxl Y3Rpb25zLm11c2V1bS1ncmVub2JsZS5mcoIvY29sbGVjdGlvbnMubXVzZXVtLWhp c3RvaXJlbmF0dXJlbGxlLm9wYWN3ZWIuaW+CJGNvbGxlY3Rpb25zLm11c2V1bWFx dWFyaXVtZGVuYW5jeS5ldYIuY29sbGVjdGlvbnMudmFsbGVlLWF1eC1sb3Vwcy5o YXV0cy1kZS1zZWluZS5mcoIdY29sbGVjdGlvbnNtdXNlZXMudmF1Y2x1c2UuZnKC KmNvbGxlY3Rpb25zcGF0cmltb25pYWxlcy5tb25uYWllZGVwYXJpcy5mcoIPZGVt by5vcGFjd2ViLmlvgiZkb2N1bWVudGF0aW9uLXNhcnJlZ3VlbWluZXMub3BhY3dl Yi5pb4IfZG9jdW1lbnRhdGlvbm11c2Vlcy52YXVjbHVzZS5mcoIRZHVsYW1hLm9w YWN3ZWIuaW+CEGVuc2JhLm9wYWN3ZWIuaW+CGmZlcnVkZXNzY2llbmNlcy5vcGFj d2ViLmlvgiFnZW9sb2dpZS1tdXNldW0tYW5nZXJzLm9wYWN3ZWIuaW+CEm1iYS1w YXUub3BhY3dlYi5mcoIUbWhjLW9wYWN3ZWIubGlsbGUuZnKCIm1pbi1jb2xsZWN0 aW9ucy5tdXNldW0tZ3Jlbm9ibGUuZnKCEm1vYnlkb2Mub3BhY3dlYi5mcoISbW9k eWRldi5vcGFjd2ViLmlvgiZtdXNiYS1ib3JkZWF1eC1iaWJsaW90aGVxdWUub3Bh Y3dlYi5mcoIZbXVzYmEtYm9yZGVhdXgub3BhY3dlYi5mcoIgbXVzZWUtYW50b2lu ZS12aXZlbmVsLm9wYWN3ZWIuZnKCGm11c2VlLWFxdWl0YWluZS5vcGFjd2ViLmZy gi1tdXNlZS1hcnRzZXRpbmR1c3RyaWUtc2FpbnRldGllbm5lLm9wYWN3ZWIuaW+C HW11c2VlLWJyZXRvbi1vYWkuZmluaXN0ZXJlLmZyghltdXNlZS1icmV0b24uZmlu aXN0ZXJlLmZyghhtdXNlZS1jYXJvdWdlLm9wYWN3ZWIuaW+CNG11c2VlLWRlLWxh LWZpZ3VyaW5lLWhpc3RvcmlxdWUtY29tcGllZ25lLm9wYWN3ZWIuZnKCLW11c2Vl LWRlcy1hcnRzLWFuY2llbnMuY29sbGVjdGlvbnMub3BhY3dlYi5pb4IabXVzZWUt ZHVua2VycXVlLm9wYWN3ZWIuaW+CF211c2VlLWV2cmV1eC5vcGFjd2ViLmlvghdt dXNlZS1nb3VwaWwub3BhY3dlYi5mcoIVbXVzZWUtdGVzdC5vcGFjd2ViLmlvgiZt dXNlZWRlbGFyZXNpc3RhbmNlLWxpbW9nZXMub3BhY3dlYi5pb4IqbXVzZWVub3V2 ZWxsZWNhbGVkb25pZS1jb2xsZWN0aW9ucy5nb3V2Lm5jgiNtdXNlZW5vdXZlbGxl Y2FsZWRvbmllLWlwa2QuZ291di5uY4IebXVzZWVzLmJvdWxvZ25lYmlsbGFuY291 cnQuY29tgh5tdXNlZXMudmlsbGUtcG9pc3N5Lm9wYWN3ZWIuaW+CGG11c2V1bS1h bmdlcnMub3BhY3dlYi5pb4IRbXVzZXVtLmF1eGVycmUuZnKCGW11c2V1bXRvdWxv dXNlLm9wYWN3ZWIuaW+CEG93LW1iYS5hbmdlcnMuZnKCJHBhbGVvLWNvbGxlY3Rp b25zLm11c2V1bS1ncmVub2JsZS5mcoIUcGJhLW9wYWN3ZWIubGlsbGUuZnKCHXBl dGVyYm9yb3VnaG11c2V1bS5vcGFjd2ViLmlvgiRwcmVoaXN0b2lyZS1tdXNldW0t YW5nZXJzLm9wYWN3ZWIuaW+CJXByb3ZpbmNlZGVuYW11ci1jb2xsZWN0aW9uLm9w YWN3ZWIuZnKCH3NhcnJlZ3VlbWluZXMtbXVzZXVtLm9wYWN3ZWIuaW+CEXd3dy5h dWd1c3RpbnMub3Jngh13d3cuY29sbGVjdGlvbnMtbXVzZWUtcm9wcy5iZYIMd3d3 LmxlbWl2LmZyghN3d3cubWVtb2lyZTE0LTQ1LmV1ghJ3d3cubXVzZWUtY29uZGUu ZnKCEHd3dy5tdXNlZWdveWEuZnKCG3d3dy5zYXJyZWd1ZW1pbmVzLW11c2V1bS5m coIiem9vLWNvbGxlY3Rpb25zLm11c2V1bS1ncmVub2JsZS5mcjATBgNVHSAEDDAK MAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AKLiv9Ye3i8vB6DW Tm03p9xlQ7DGtS6i2reK+Jpt9RfYAAABjIMkFKIAAAQDAEcwRQIgdvu/ZMjClXca x5ugNmj4sI6y7ok9+YTn6obomvSkNw4CIQCPWbxKdFEiHq3Le1L3aIknQu97hBgV wuc2fbLlvD/1QQB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAAB jIMkFLMAAAQDAEgwRgIhAMel3WtxIfHZPOaBBqmL8cqYeNVXhfNMJU2f3CllX8gP AiEAhDkmbv93G5rWtfCzeXNtzwXj3sZcJyrU0D3lwc92NgwwDQYJKoZIhvcNAQEL BQADggEBAB/Wso/0CoUeKoAsG8hivYc4XevyvZqsaMtQ2v0rwVIqVXGhLxQVusAa 8lB9zlTbFGpw9IyndUSpWAhL583Wtc/z1rgEhtB+bMAbEjlpBx1k/pnA4uP70u8v jjQOexUuDcO3Sfveeygmq/2sxx3N1ixBnFc7nFCdv0ZzOyhXVaNW89BeVS9TTm53 mbKbBZHUzaCpG5g+hT9OSinUVEXJgREuXuc1t5AAEgftfDJZzP5Cb1WY5ncsw5Gr uQpp7afvfGGHCcgJLkIxCGGBa+Eo6XMBW9EU8U2JetSqXpNsQbfvuB8M6za0TmWO q/PRc1ZM6cjbW01LTD5Vzb2kSX8iLHY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn876oKLufME6eL0hUvRC R53AcztKDOtdJZ+tBh2G278PNW0VtCHkMp+4Fg7STxZGcnXCsgVQD0MMMrfudtXA YWUHQkuA/xEJ/V+hMKd/xpDEhHejXQv5jmIHbsFdX0DoFLEg960uBpNeVR+jb677 LByQ/yxwPbKnR1FBwe9h/gMqVI0x53VP2oSCpdv7mjWnc2zSo+2FacCdC+VzC6RW n40+Ts5iiKSHRHMTNABVsNUwpCJkpcUlaHCRwxt9Dhe2SQusp69onvRlIRYdnhDQ CUAB4sF2WPY9IkjAwTCykBHVYjngJjYnrfG5RaZDXXivZIu3zFQ056HHzzY6ijIi wwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 396799387813128238953830560418235590995765 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-19 16:33:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-18 16:33:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bo.opacweb.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20173955645238668405954445775280316825523950281580989986092784587958085585259971245900438583082146548789961628604686868903477550878464077765844830368395121418801476962444168632400660368809396813926837952495658775844734309059542740094613569895513020320945472663647371705585643615223712745067736862186898411587667631866527303260136776925800628128052406472234473160583315319577248801210609235422181227870710970670741749473423310778964056358547318214064880916624765645568905045398524182648019466330335210911723237729437374610251938249860126865438276506600766133174775948454746649172304398615627909328243598427829688214211 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e96a7ac9c0ef4fe0b9a9b066f48489380f392703 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2232 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'augustins.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bo.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bota-collections.museum-grenoble.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'botanique-museum-angers.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'capc-bordeaux.opacweb.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'catzarts.beauxartsparis.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'centrederessources.museedelaposte.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collection-museumtoulouse.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-mba.nancy.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-musees.cholet.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-musees.nyon.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.domaine-de-sceaux.hauts-de-seine.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.mahn.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.mba-lyon.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.mba-pau.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.mbaq.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.museedelaposte.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.musees.marseille.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.museum-grenoble.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.museum-histoirenaturelle.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.museumaquariumdenancy.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.vallee-aux-loups.hauts-de-seine.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collectionsmusees.vaucluse.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collectionspatrimoniales.monnaiedeparis.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'documentation-sarreguemines.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'documentationmusees.vaucluse.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dulama.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ensba.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ferudessciences.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geologie-museum-angers.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mba-pau.opacweb.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhc-opacweb.lille.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'min-collections.museum-grenoble.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mobydoc.opacweb.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'modydev.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musba-bordeaux-bibliotheque.opacweb.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musba-bordeaux.opacweb.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-antoine-vivenel.opacweb.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-aquitaine.opacweb.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-artsetindustrie-saintetienne.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-breton-oai.finistere.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-breton.finistere.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-carouge.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-de-la-figurine-historique-compiegne.opacweb.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-des-arts-anciens.collections.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-dunkerque.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-evreux.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-goupil.opacweb.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-test.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museedelaresistance-limoges.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museenouvellecaledonie-collections.gouv.nc' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museenouvellecaledonie-ipkd.gouv.nc' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musees.boulognebillancourt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musees.ville-poissy.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museum-angers.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museum.auxerre.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museumtoulouse.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ow-mba.angers.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paleo-collections.museum-grenoble.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pba-opacweb.lille.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'peterboroughmuseum.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prehistoire-museum-angers.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'provincedenamur-collection.opacweb.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sarreguemines-museum.opacweb.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.augustins.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.collections-musee-rops.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lemiv.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.memoire14-45.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.musee-conde.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.museegoya.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sarreguemines-museum.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zoo-collections.museum-grenoble.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018c832414a20000040300473045022076fbbf64c8c295771ac79ba03668f8b08eb2ee893df984e7ea86e89af4a4370e0221008f59bc4a7451221eadcb7b52f768892742ef7b841815c2e7367db2e5bc3ff5410077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c832414b30000040300483046022100c7a5dd6b7121f1d93ce68106a98bf1ca9878d55785f34c254d9fdc29655fc80f0221008439266eff771b9ad6b5f0b379736dcf05e3dec65c272ad4d03de5c1cf76360c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001fd6b28ff40a851e2a802c1bc862bd87385debf2bd9aac68cb50dafd2bc1522a5571a12f1415bac01af2507dce54db146a70f48ca77544a958084be7cdd6b5cff3d6b80486d07e6cc01b123969071d64fe99c0e2e3fbd2ef2f8e340e7b152e0dc3b749fbde7b2826abfdacc71dcdd62c419c573b9c509dbf46733b285755a356f3d05e552f534e6e7799b29b0591d4cda0a91b983e853f4e4a29d45445c981112e5ee735b790001207ed7c3259ccfe426f5598e6772cc391abb90a69eda7ef7c618709c8092e42310861816be128e973015bd114f14d897ad4aa5e936c41b7efb81f0ceb36b44e658eabf3d173564ce9c8db5b4d4b4c3e55cdbda4497f222c76