norisque.fr
Issued by R3
About this certificate
This digital certificate with serial number 03:1d:30:a9:89:49:41:6f:c6:ff:e6:be:7b:5a:33:e3:e9:71 was issued on by Let's Encrypt.
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=norisque.fr
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:1d:30:a9:89:49:41:6f:c6:ff:e6:be:7b:5a:33:e3:e9:71Serial Number (int): 271269729662448746948051786103787331250545
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 7a:43:da:26:9d:52:41:23:5f:d0:0c:3e:39:67:8e:41:ec:09:15:0a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d1:eb:12:99:03:7f:6b:4d:03:2e:5a:d5:2b:7c:da:63:21:5b:43:94
Fingerprint (sha256): 35:0a:f8:5f:10:2c:1b:76:fb:3f:a6:2d:38:9c:ef:c1:5b:34:7a:9f:4a:30:ef:89:88:78:68:98:65:f1:e6:13
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate norisque.fr
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for norisque.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dev.norisque.fr
norisque-management.com
norisque-management.fr
norisque.com
norisque.fr
www.dev.norisque.fr
www.norisque-management.com
www.norisque-management.fr
www.norisque.com
www.norisque.fr
norisque-management.com
norisque-management.fr
norisque.com
norisque.fr
www.dev.norisque.fr
www.norisque-management.com
www.norisque-management.fr
www.norisque.com
www.norisque.fr
Other certificates including the domain name norisque.fr
(limited to 100 certificates)
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque-management.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque-management.com
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque-management.com
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque-management.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque-management.com
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque.fr
norisque-management.com
norisque.fr
norisque.fr
norisque.fr
Certificate
The complete raw certificate details for norisque.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgISAx0wqYlJQW/G/+a+e1oz4+lxMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDgyMTIyMjdaFw0yNDA3MDcyMTIyMjZaMBYxFDASBgNVBAMT C25vcmlzcXVlLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoX4L 4P+j2/X2BJ+nkqCW94TKGK5XywA6kXTAsRIpyE2Iiuvx1fjzwqPlXmIVjN2o9B2l 7i+sO2r2Jm476L2gG9iw1OdQrJOonFO05aYj4FfKN9gHVL7KyspdnqpmJnp6udHg 3BoqYsoxO8UDvkcg3vmXV7zvK3ZUkmV8L9CWz7NAb6M5OhqhtIZGeXHZuM4i877P BcQL0X8dw0b75DW51uYHXniK4BzNdHG0cV10m2gW7uX1KB0N6NeglVDmHVMdir6I MKp7A4mppk0xA4eOFGnA0QywbKnQmOVmXZymdOnUoCzhx7rozJD1Vuns8WxjlEF8 ppb9ZbwZ/EpvKr+v3wIDAQABo4IC0TCCAs0wDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBR6Q9omnVJBI1/QDD45Z45B7AkVCjAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDm H6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5v LmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzCB 2QYDVR0RBIHRMIHOgg9kZXYubm9yaXNxdWUuZnKCF25vcmlzcXVlLW1hbmFnZW1l bnQuY29tghZub3Jpc3F1ZS1tYW5hZ2VtZW50LmZyggxub3Jpc3F1ZS5jb22CC25v cmlzcXVlLmZyghN3d3cuZGV2Lm5vcmlzcXVlLmZyght3d3cubm9yaXNxdWUtbWFu YWdlbWVudC5jb22CGnd3dy5ub3Jpc3F1ZS1tYW5hZ2VtZW50LmZyghB3d3cubm9y aXNxdWUuY29tgg93d3cubm9yaXNxdWUuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEw ggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/TH vQANLXJv4frUFwAAAY6/zjmmAAAEAwBHMEUCIQDzmVS+mhIFSqUH96BdAMaKTKlw 9Sfvmp0YGnzm/0CxsQIgBMXDpwgsoUz/rPZWhTKFsoamSdghMi8YFFDpeZiQ8RQA dgAZmBBxCfDWUi4wgNKeP2S7g24ozPkPUo7u385KPxa0ygAAAY6/zjm+AAAEAwBH MEUCIQCSBL73ruq8/+WzgN8St+vFmMEvqJO89Y9NSe4SJ70cSwIgWYPbAzMkEj+e cf7MZ9Os980EFuFBJECThVQutkh63eQwDQYJKoZIhvcNAQELBQADggEBAA+XnACN +mxxUVYW1s+ZiZd4VB+PTQlYQk9Ld3Xmo6xzXgo9hYqV2oTloGf3pVR9GLWwLaB7 qtShTelpaWJksWJGzo80tg2oK37zMWc0PF1V2cz/3oSM0XAvmVM9rwpWyRYlQxg0 hsVP1C3+5rsZWhxho+w5tpC9GhJu+rmp+zryYYh5H2AL4Udve9/Lk/f2mQDclx2D FbJlArwntI9GhUREA+LoUQU5hQ/ZaGv46syo+xRs7TKc64VnRHd8oFSw393rMJ+e VUUG9lWJ/sd0KeWO4VxAV3OIH2yYqYpXi53CQoFT+sn3vyCFESM0+HTf5RwagWAi VWDsY1XVyhL7B2o= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoX4L4P+j2/X2BJ+nkqCW 94TKGK5XywA6kXTAsRIpyE2Iiuvx1fjzwqPlXmIVjN2o9B2l7i+sO2r2Jm476L2g G9iw1OdQrJOonFO05aYj4FfKN9gHVL7KyspdnqpmJnp6udHg3BoqYsoxO8UDvkcg 3vmXV7zvK3ZUkmV8L9CWz7NAb6M5OhqhtIZGeXHZuM4i877PBcQL0X8dw0b75DW5 1uYHXniK4BzNdHG0cV10m2gW7uX1KB0N6NeglVDmHVMdir6IMKp7A4mppk0xA4eO FGnA0QywbKnQmOVmXZymdOnUoCzhx7rozJD1Vuns8WxjlEF8ppb9ZbwZ/EpvKr+v 3wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 271269729662448746948051786103787331250545 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-08 21:22:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-07 21:22:26 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'norisque.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20386522896918277152378014782778545310618044282684180304321358428592070616785402720229495519913914897132465021466615003259269627983576937159943677486004540833645196632711322175643627337100787530373264799990698384089214942246531498430072696768613016590541234487224944534161617197083657332559863050248568437316128134567596714417893189418932774024813548795323491151308490375154886787851748818003030356858315853785096670541397440151858261247527907315048857085376066367103518957993187225698831487870872019693398199202809107005900357865176592275047634245710605789499357895590821977365512180626337727463253939326712096468959 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7a43da269d5241235fd00c3e39678e41ec09150a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (209 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.norisque.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'norisque-management.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'norisque-management.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'norisque.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'norisque.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dev.norisque.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.norisque-management.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.norisque-management.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.norisque.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.norisque.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ebfce39a60000040300473045022100f39954be9a12054aa507f7a05d00c68a4ca970f527ef9a9d181a7ce6ff40b1b1022004c5c3a7082ca14cffacf656853285b286a649d821322f181450e9799890f1140076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018ebfce39be00000403004730450221009204bef7aeeabcffe5b380df12b7ebc598c12fa893bcf58f4d49ee1227bd1c4b02205983db033324123f9e71fecc67d3acf7cd0416e14124409385542eb6487adde4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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