www.brocantedepont.fr

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:a1:4a:a3:4e:28:94:98:b5:06:c8:22:cb:c3:80:84:ca:0d was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.brocantedepont.fr

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:a1:4a:a3:4e:28:94:98:b5:06:c8:22:cb:c3:80:84:ca:0d
Serial Number (int): 316221529670870921487425784739753628060173
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 19:36:9a:aa:98:0c:ff:8e:e0:1a:f5:68:04:51:bc:82:9a:45:62:0c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 71:cd:9e:d4:da:24:4a:1a:77:0b:72:36:7b:0f:b1:1d:4f:74:22:7e
Fingerprint (sha256): 38:5b:7c:d0:ad:6b:d7:cc:63:7d:12:69:12:b8:66:29:5e:76:01:dd:a7:6e:76:84:41:5f:db:80:56:ad:c1:15

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org/

Check the revocation status for certificate www.brocantedepont.fr

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.brocantedepont.fr

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

brocantedepont.fr
www.brocantedepont.fr

Other certificates including the domain name brocantedepont.fr

(limited to 100 certificates)
www.brocantedepont.fr
www.brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
www.brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr
brocantedepont.fr

Certificate

The complete raw certificate details for www.brocantedepont.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 316221529670870921487425784739753628060173
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-19 23:36:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-20 23:36:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.brocantedepont.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 801150337067319346967878991764317522767146990315129702766683725525638405322266160413276650150992799897563646038345412015023813576920777990033690894601050897276469490062381400006750865594837893272977716232003341438921432946220921636280062771755892611199622427392630855816082431097795616760501907358707006862347175142431159266070346580225428418532141849871061614266503378058224339413890345919137344268306663842762858664466637358526489225972272315847097816477395885717871812022673631003460226632360373074425073320966649002633179159753637386548418412528213669908351053596620624120978672942463102185582973728449842212033247197439550803941447070745507031714596142299614574452741579683901486607192815811513648398576310734248556084714636820848605310633882375367752994468536078465588361142064660841692662331269636876481378014486958250908709044462505477032447605799641199327542310545357152835381175099032471885952495326285758213162269926258632355290981325030559360911407602856936379458825648335716233449406761817784236853101064551608903842638861173419884080234939613051461898131554248828551445696144433565224965297330786125662517695263986011746460653709759250704904630928886732325402780201862085497016935922549195620723314105660939939503165577
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							19369aaa980cff8ee01af5680451bc829a45620c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brocantedepont.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.brocantedepont.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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