norisque.fr

Issued by R3

About this certificate

This digital certificate with serial number 03:1d:30:a9:89:49:41:6f:c6:ff:e6:be:7b:5a:33:e3:e9:71 was issued on by Let's Encrypt.

With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=norisque.fr

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 03:1d:30:a9:89:49:41:6f:c6:ff:e6:be:7b:5a:33:e3:e9:71
Serial Number (int): 271269729662448746948051786103787331250545
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 7a:43:da:26:9d:52:41:23:5f:d0:0c:3e:39:67:8e:41:ec:09:15:0a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): d1:eb:12:99:03:7f:6b:4d:03:2e:5a:d5:2b:7c:da:63:21:5b:43:94
Fingerprint (sha256): 35:0a:f8:5f:10:2c:1b:76:fb:3f:a6:2d:38:9c:ef:c1:5b:34:7a:9f:4a:30:ef:89:88:78:68:98:65:f1:e6:13

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate norisque.fr

10

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for norisque.fr

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

dev.norisque.fr
norisque-management.com
norisque-management.fr
norisque.com
norisque.fr
www.dev.norisque.fr
www.norisque-management.com
www.norisque-management.fr
www.norisque.com
www.norisque.fr

Other certificates including the domain name norisque.fr

(limited to 100 certificates)
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque-management.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque-management.com
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque-management.com
norisque.fr
norisque.fr
norisque.fr

Certificate

The complete raw certificate details for norisque.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFpzCCBI+gAwIBAgISAx0wqYlJQW/G/+a+e1oz4+lxMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDA0MDgyMTIyMjdaFw0yNDA3MDcyMTIyMjZaMBYxFDASBgNVBAMT
C25vcmlzcXVlLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoX4L
4P+j2/X2BJ+nkqCW94TKGK5XywA6kXTAsRIpyE2Iiuvx1fjzwqPlXmIVjN2o9B2l
7i+sO2r2Jm476L2gG9iw1OdQrJOonFO05aYj4FfKN9gHVL7KyspdnqpmJnp6udHg
3BoqYsoxO8UDvkcg3vmXV7zvK3ZUkmV8L9CWz7NAb6M5OhqhtIZGeXHZuM4i877P
BcQL0X8dw0b75DW51uYHXniK4BzNdHG0cV10m2gW7uX1KB0N6NeglVDmHVMdir6I
MKp7A4mppk0xA4eOFGnA0QywbKnQmOVmXZymdOnUoCzhx7rozJD1Vuns8WxjlEF8
ppb9ZbwZ/EpvKr+v3wIDAQABo4IC0TCCAs0wDgYDVR0PAQH/BAQDAgWgMB0GA1Ud
JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW
BBR6Q9omnVJBI1/QDD45Z45B7AkVCjAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDm
H6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5v
LmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzCB
2QYDVR0RBIHRMIHOgg9kZXYubm9yaXNxdWUuZnKCF25vcmlzcXVlLW1hbmFnZW1l
bnQuY29tghZub3Jpc3F1ZS1tYW5hZ2VtZW50LmZyggxub3Jpc3F1ZS5jb22CC25v
cmlzcXVlLmZyghN3d3cuZGV2Lm5vcmlzcXVlLmZyght3d3cubm9yaXNxdWUtbWFu
YWdlbWVudC5jb22CGnd3dy5ub3Jpc3F1ZS1tYW5hZ2VtZW50LmZyghB3d3cubm9y
aXNxdWUuY29tgg93d3cubm9yaXNxdWUuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEw
ggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/TH
vQANLXJv4frUFwAAAY6/zjmmAAAEAwBHMEUCIQDzmVS+mhIFSqUH96BdAMaKTKlw
9Sfvmp0YGnzm/0CxsQIgBMXDpwgsoUz/rPZWhTKFsoamSdghMi8YFFDpeZiQ8RQA
dgAZmBBxCfDWUi4wgNKeP2S7g24ozPkPUo7u385KPxa0ygAAAY6/zjm+AAAEAwBH
MEUCIQCSBL73ruq8/+WzgN8St+vFmMEvqJO89Y9NSe4SJ70cSwIgWYPbAzMkEj+e
cf7MZ9Os980EFuFBJECThVQutkh63eQwDQYJKoZIhvcNAQELBQADggEBAA+XnACN
+mxxUVYW1s+ZiZd4VB+PTQlYQk9Ld3Xmo6xzXgo9hYqV2oTloGf3pVR9GLWwLaB7
qtShTelpaWJksWJGzo80tg2oK37zMWc0PF1V2cz/3oSM0XAvmVM9rwpWyRYlQxg0
hsVP1C3+5rsZWhxho+w5tpC9GhJu+rmp+zryYYh5H2AL4Udve9/Lk/f2mQDclx2D
FbJlArwntI9GhUREA+LoUQU5hQ/ZaGv46syo+xRs7TKc64VnRHd8oFSw393rMJ+e
VUUG9lWJ/sd0KeWO4VxAV3OIH2yYqYpXi53CQoFT+sn3vyCFESM0+HTf5RwagWAi
VWDsY1XVyhL7B2o=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoX4L4P+j2/X2BJ+nkqCW
94TKGK5XywA6kXTAsRIpyE2Iiuvx1fjzwqPlXmIVjN2o9B2l7i+sO2r2Jm476L2g
G9iw1OdQrJOonFO05aYj4FfKN9gHVL7KyspdnqpmJnp6udHg3BoqYsoxO8UDvkcg
3vmXV7zvK3ZUkmV8L9CWz7NAb6M5OhqhtIZGeXHZuM4i877PBcQL0X8dw0b75DW5
1uYHXniK4BzNdHG0cV10m2gW7uX1KB0N6NeglVDmHVMdir6IMKp7A4mppk0xA4eO
FGnA0QywbKnQmOVmXZymdOnUoCzhx7rozJD1Vuns8WxjlEF8ppb9ZbwZ/EpvKr+v
3wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 271269729662448746948051786103787331250545
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-08 21:22:27 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-07 21:22:26 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'norisque.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20386522896918277152378014782778545310618044282684180304321358428592070616785402720229495519913914897132465021466615003259269627983576937159943677486004540833645196632711322175643627337100787530373264799990698384089214942246531498430072696768613016590541234487224944534161617197083657332559863050248568437316128134567596714417893189418932774024813548795323491151308490375154886787851748818003030356858315853785096670541397440151858261247527907315048857085376066367103518957993187225698831487870872019693398199202809107005900357865176592275047634245710605789499357895590821977365512180626337727463253939326712096468959
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7a43da269d5241235fd00c3e39678e41ec09150a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (209 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.norisque.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'norisque-management.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'norisque-management.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'norisque.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'norisque.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dev.norisque.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.norisque-management.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.norisque-management.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.norisque.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.norisque.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ebfce39a60000040300473045022100f39954be9a12054aa507f7a05d00c68a4ca970f527ef9a9d181a7ce6ff40b1b1022004c5c3a7082ca14cffacf656853285b286a649d821322f181450e9799890f1140076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018ebfce39be00000403004730450221009204bef7aeeabcffe5b380df12b7ebc598c12fa893bcf58f4d49ee1227bd1c4b02205983db033324123f9e71fecc67d3acf7cd0416e14124409385542eb6487adde4
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		000f979c008dfa6c71515616d6cf99899778541f8f4d0958424f4b7775e6a3ac735e0a3d858a95da84e5a067f7a5547d18b5b02da07baad4a14de969696264b16246ce8f34b60da82b7ef33167343c5d55d9ccffde848cd1702f99533daf0a56c9162543183486c54fd42dfee6bb195a1c61a3ec39b690bd1a126efab9a9fb3af26188791f600be1476f7bdfcb93f7f69900dc971d8315b26502bc27b48f4685444403e2e8510539850fd9686bf8eacca8fb146ced329ceb856744777ca054b0dfddeb309f9e554506f65589fec77429e58ee15c405773881f6c98a98a578b9dc2428153fac9f7bf2085112334f874dfe51c1a8160225560ec6355d5ca12fb076a