tms.opacweb.fr

Issued by R3

About this certificate

This digital certificate with serial number 03:bc:0c:c1:04:4a:90:1b:b3:fc:bd:4a:92:11:6c:7d:dc:be was issued on by Let's Encrypt.

With 82 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=tms.opacweb.fr

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:bc:0c:c1:04:4a:90:1b:b3:fc:bd:4a:92:11:6c:7d:dc:be
Serial Number (int): 325326895712697409056232742553146934287550
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 79:7b:a0:c0:80:43:74:de:31:36:9a:27:2c:48:3f:cf:15:a9:c2:c2
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): ed:16:01:19:f6:aa:99:14:d7:d2:3d:39:b2:2c:c4:b6:2d:42:bd:1a
Fingerprint (sha256): 38:d6:27:f7:6e:19:c6:48:cd:3f:6d:77:d3:71:c3:c1:62:43:99:ea:1f:30:18:5b:83:40:18:c2:93:18:fa:95

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate tms.opacweb.fr

82

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for tms.opacweb.fr

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

2000ans2000images.toulouse.fr
augustins.opacweb.fr
augustins.org
ba-bordeaux.opacweb.fr
babibliobordeaux.opacweb.fr
biblio-nyon.opacweb.fr
capc.opacweb.fr
centrebrassens.ville-sete.fr
charles-negre.opacweb.fr
collections-mba.nancy.fr
collections-musees.nyon.ch
collections-sarreguemines.opacweb.fr
collections-vaucluse.opacweb.fr
collections.mba-pau.opacweb.fr
collections.museenouvellecaledonie.nc
collections.musees-dunkerque.eu
collections.musees.marseille.fr
collections.museum-histoirenaturelle.opacweb.fr
demo.opacweb.fr
dev.opacweb.fr
dev2.opacweb.fr
documentation-sarreguemines.opacweb.fr
documentation-vaucluse.opacweb.fr
documentation.laciteduvin.com
domaine-de-sceaux.opacweb.fr
dupuy.opacweb.fr
espacebrassens.ville-sete.fr
espacemuseal-mcn-collection.opacweb.fr
exposition-collection.opacweb.fr
filmoteca-oai.opacweb.fr
filmoteca-oainews.opacweb.fr
filmoteca.opacweb.fr
formation.opacweb.fr
junior.augustins.org
labit.opacweb.fr
maison-de-chateaubriand.opacweb.fr
maqbordeaux.opacweb.fr
matou.opacweb.fr
maugustins.opacweb.fr
mba-pau.opacweb.fr
mbalyon.opacweb.fr
mhc.opacweb.fr
mhn-opacweb.lille.fr
mhn2.opacweb.fr
mhntlse-ethno.opacweb.fr
mhntlse.opacweb.fr
mhntoulouse.opacweb.fr
mian-anatole-jakovsky.opacweb.fr
mobydocv7.opacweb.fr
musee-artsanciens-collection.opacweb.fr
musee-breton-oai.awstudio.website
musee-cheret.opacweb.fr
musee-cimiez.opacweb.fr
musee-leondierx.re
musee-massena.opacweb.fr
musee-matisse.opacweb.fr
musee-rops-collection.opacweb.fr
musee-villele.re
musee.coulommiers.fr
museenouvellecaledonie-collections.gouv.nc
museenouvellecaledonie-ipkd.gouv.nc
musees.aude.fr
musees.ville-poissy.fr
museeseburomagus.aude.fr
museespetiet.aude.fr
palais-lascaris.opacweb.fr
paul-dupuy.opacweb.fr
pba.opacweb.fr
prod.opacweb.fr
provincedenamur-collection.opacweb.fr
saintraymond.opacweb.fr
sarreguemines-museum.opacweb.fr
sp6.opacweb.fr
terra-amata.opacweb.fr
tms.opacweb.fr
toulouse.opacweb.fr
www.2000ans2000images.toulouse.fr
www.augustins.org
www.collections.musee-art-industrie.saint-etienne.fr
www.musee-carouge.ch
www.musee-leondierx.re
www.musee-villele.re

Other certificates including the domain name opacweb.fr

(limited to 100 certificates)
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
bo.opacweb.io
tms.opacweb.fr
tms.opacweb.fr
bo.opacweb.io
tms.opacweb.fr
bo.opacweb.io
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
collections.museum-histoirenaturelle.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
collections.museum-histoirenaturelle.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr
tms.opacweb.fr

Certificate

The complete raw certificate details for tms.opacweb.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIOXTCCDUWgAwIBAgISA7wMwQRKkBuz/L1KkhFsfdy+MA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMzA3MDMxODM1MTZaFw0yMzEwMDExODM1MTVaMBkxFzAVBgNVBAMT
DnRtcy5vcGFjd2ViLmZyMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA
tHiC/vp3w3fUjYRym9SZV7lABRCJ5Um3C29aziZnw9SuCPsPgFo5MEzu6jdqdXgF
MV6M9SPSyxO9ELCxvxAh6cdYSMvfxYcdYDUtaOLyRJDKrp/elc4fuiu1snGF66ra
JbDgEihLhRaaGyFbllRW64QHLASFqtJqkVjdqgA3PrEE1R+H6a7FPX2FyfVhQcgI
Z2sEWoR7i9ei9xFUQZpBUgaZssfjkGFze7MxVBrER+SVpAPrq5mPsNM4n5lbTVRV
gEsagFo3wA/9jyB8Z7tIGrv9PQUUmxs0/SHFoInshhd7+q/MueVRshTgZH68yAwJ
hU9JQcDWhOibFqyq6Exz5sGyZ4LoeYSf8IUellJhyPbrsQOPB6wrOvJ+ufJRmcLQ
WckXEVV4xnDeoQ8/4KAtGnEytKs62RDsOxnNcOSbRVCqqJeVhRaDMsAWZbJpTcNn
6J3Hvks6ph/2Oh7G2qu5e7JXkdMv+ZvugrDLn53NBBXSHweZeMYQ2hE9Xpuc1c0J
4JFXffbwfmBH4jFIivZnfbBKyJGSLjMy6NUh1s8+pEDh5jDyNwwoPdL0OTluV5H1
dB/ZZs2t6yjRU+ftCn6GFJ+0EtL3+BVrqKvmsQpymcfxlvQnV/X7t8gAHki+/obt
aAc7IIaN1p9duM/FWJVtFLDTox31BNTdHNMpscCQ2dUCAwEAAaOCCoQwggqAMA4G
A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD
VR0TAQH/BAIwADAdBgNVHQ4EFgQUeXugwIBDdN4xNponLEg/zxWpwsIwHwYDVR0j
BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG
AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6
Ly9yMy5pLmxlbmNyLm9yZy8wggiLBgNVHREEggiCMIIIfoIdMjAwMGFuczIwMDBp
bWFnZXMudG91bG91c2UuZnKCFGF1Z3VzdGlucy5vcGFjd2ViLmZygg1hdWd1c3Rp
bnMub3JnghZiYS1ib3JkZWF1eC5vcGFjd2ViLmZyghtiYWJpYmxpb2JvcmRlYXV4
Lm9wYWN3ZWIuZnKCFmJpYmxpby1ueW9uLm9wYWN3ZWIuZnKCD2NhcGMub3BhY3dl
Yi5mcoIcY2VudHJlYnJhc3NlbnMudmlsbGUtc2V0ZS5mcoIYY2hhcmxlcy1uZWdy
ZS5vcGFjd2ViLmZyghhjb2xsZWN0aW9ucy1tYmEubmFuY3kuZnKCGmNvbGxlY3Rp
b25zLW11c2Vlcy5ueW9uLmNogiRjb2xsZWN0aW9ucy1zYXJyZWd1ZW1pbmVzLm9w
YWN3ZWIuZnKCH2NvbGxlY3Rpb25zLXZhdWNsdXNlLm9wYWN3ZWIuZnKCHmNvbGxl
Y3Rpb25zLm1iYS1wYXUub3BhY3dlYi5mcoIlY29sbGVjdGlvbnMubXVzZWVub3V2
ZWxsZWNhbGVkb25pZS5uY4IfY29sbGVjdGlvbnMubXVzZWVzLWR1bmtlcnF1ZS5l
dYIfY29sbGVjdGlvbnMubXVzZWVzLm1hcnNlaWxsZS5mcoIvY29sbGVjdGlvbnMu
bXVzZXVtLWhpc3RvaXJlbmF0dXJlbGxlLm9wYWN3ZWIuZnKCD2RlbW8ub3BhY3dl
Yi5mcoIOZGV2Lm9wYWN3ZWIuZnKCD2RldjIub3BhY3dlYi5mcoImZG9jdW1lbnRh
dGlvbi1zYXJyZWd1ZW1pbmVzLm9wYWN3ZWIuZnKCIWRvY3VtZW50YXRpb24tdmF1
Y2x1c2Uub3BhY3dlYi5mcoIdZG9jdW1lbnRhdGlvbi5sYWNpdGVkdXZpbi5jb22C
HGRvbWFpbmUtZGUtc2NlYXV4Lm9wYWN3ZWIuZnKCEGR1cHV5Lm9wYWN3ZWIuZnKC
HGVzcGFjZWJyYXNzZW5zLnZpbGxlLXNldGUuZnKCJmVzcGFjZW11c2VhbC1tY24t
Y29sbGVjdGlvbi5vcGFjd2ViLmZygiBleHBvc2l0aW9uLWNvbGxlY3Rpb24ub3Bh
Y3dlYi5mcoIYZmlsbW90ZWNhLW9haS5vcGFjd2ViLmZyghxmaWxtb3RlY2Etb2Fp
bmV3cy5vcGFjd2ViLmZyghRmaWxtb3RlY2Eub3BhY3dlYi5mcoIUZm9ybWF0aW9u
Lm9wYWN3ZWIuZnKCFGp1bmlvci5hdWd1c3RpbnMub3JnghBsYWJpdC5vcGFjd2Vi
LmZygiJtYWlzb24tZGUtY2hhdGVhdWJyaWFuZC5vcGFjd2ViLmZyghZtYXFib3Jk
ZWF1eC5vcGFjd2ViLmZyghBtYXRvdS5vcGFjd2ViLmZyghVtYXVndXN0aW5zLm9w
YWN3ZWIuZnKCEm1iYS1wYXUub3BhY3dlYi5mcoISbWJhbHlvbi5vcGFjd2ViLmZy
gg5taGMub3BhY3dlYi5mcoIUbWhuLW9wYWN3ZWIubGlsbGUuZnKCD21objIub3Bh
Y3dlYi5mcoIYbWhudGxzZS1ldGhuby5vcGFjd2ViLmZyghJtaG50bHNlLm9wYWN3
ZWIuZnKCFm1obnRvdWxvdXNlLm9wYWN3ZWIuZnKCIG1pYW4tYW5hdG9sZS1qYWtv
dnNreS5vcGFjd2ViLmZyghRtb2J5ZG9jdjcub3BhY3dlYi5mcoInbXVzZWUtYXJ0
c2FuY2llbnMtY29sbGVjdGlvbi5vcGFjd2ViLmZygiFtdXNlZS1icmV0b24tb2Fp
LmF3c3R1ZGlvLndlYnNpdGWCF211c2VlLWNoZXJldC5vcGFjd2ViLmZyghdtdXNl
ZS1jaW1pZXoub3BhY3dlYi5mcoISbXVzZWUtbGVvbmRpZXJ4LnJlghhtdXNlZS1t
YXNzZW5hLm9wYWN3ZWIuZnKCGG11c2VlLW1hdGlzc2Uub3BhY3dlYi5mcoIgbXVz
ZWUtcm9wcy1jb2xsZWN0aW9uLm9wYWN3ZWIuZnKCEG11c2VlLXZpbGxlbGUucmWC
FG11c2VlLmNvdWxvbW1pZXJzLmZygiptdXNlZW5vdXZlbGxlY2FsZWRvbmllLWNv
bGxlY3Rpb25zLmdvdXYubmOCI211c2Vlbm91dmVsbGVjYWxlZG9uaWUtaXBrZC5n
b3V2Lm5jgg5tdXNlZXMuYXVkZS5mcoIWbXVzZWVzLnZpbGxlLXBvaXNzeS5mcoIY
bXVzZWVzZWJ1cm9tYWd1cy5hdWRlLmZyghRtdXNlZXNwZXRpZXQuYXVkZS5mcoIa
cGFsYWlzLWxhc2NhcmlzLm9wYWN3ZWIuZnKCFXBhdWwtZHVwdXkub3BhY3dlYi5m
coIOcGJhLm9wYWN3ZWIuZnKCD3Byb2Qub3BhY3dlYi5mcoIlcHJvdmluY2VkZW5h
bXVyLWNvbGxlY3Rpb24ub3BhY3dlYi5mcoIXc2FpbnRyYXltb25kLm9wYWN3ZWIu
ZnKCH3NhcnJlZ3VlbWluZXMtbXVzZXVtLm9wYWN3ZWIuZnKCDnNwNi5vcGFjd2Vi
LmZyghZ0ZXJyYS1hbWF0YS5vcGFjd2ViLmZygg50bXMub3BhY3dlYi5mcoITdG91
bG91c2Uub3BhY3dlYi5mcoIhd3d3LjIwMDBhbnMyMDAwaW1hZ2VzLnRvdWxvdXNl
LmZyghF3d3cuYXVndXN0aW5zLm9yZ4I0d3d3LmNvbGxlY3Rpb25zLm11c2VlLWFy
dC1pbmR1c3RyaWUuc2FpbnQtZXRpZW5uZS5mcoIUd3d3Lm11c2VlLWNhcm91Z2Uu
Y2iCFnd3dy5tdXNlZS1sZW9uZGllcngucmWCFHd3dy5tdXNlZS12aWxsZWxlLnJl
MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcA
tz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGJHUCLIQAABAMASDBG
AiEA2itIc5uKEEKRdTcXrb9Y5etLp6j1vwAblvwEEGlhl5oCIQD7PpmWsdE/Doac
ecftiS43MTiUTi2zw5qziRp1p65v9wB1AOg+0No+9QY1MudXKLyJa8kD08vREWvs
62nhd31tBr1uAAABiR1AiyEAAAQDAEYwRAIgGVZzW6Quud49D/CzzKFZRiO2Xnj7
nDQwYvVKJfC20wsCIC8au9fq+xHBFnj4jHd3UBUIygcAmMSqt5aRZFFaohdWMA0G
CSqGSIb3DQEBCwUAA4IBAQC6Ct7fh39xsmh9DPTu1EXjMilpdU2NIVkIOaWaZMeJ
qpYdlvXu74SHiMyXbHrtHRDocG6Treu5AQCRnqObaGtd895/UbjrBdWzh9OfH8Ce
9INgx/YtxMNkUfYnLUHBNmnStKKJ+IbChkzrJLLLlCbdeeOL0uVxoA1pTKdTeV6h
VyZ9vJbbkjetiXiQtVkAtrET1HA3SmGWzC2nARwD/Ehu5MZlr1Sf5agMqVENIRth
fU4I3FuypKlSxvZFfi4911J1+brx1iqzBAf8iOEUFyBAmE1U3w67LXyHHr8VPePf
zP3wyDhJTSNM5M7HwCahRNTMHHMrWJ+ZMhdZr5iEfcxz
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtHiC/vp3w3fUjYRym9SZ
V7lABRCJ5Um3C29aziZnw9SuCPsPgFo5MEzu6jdqdXgFMV6M9SPSyxO9ELCxvxAh
6cdYSMvfxYcdYDUtaOLyRJDKrp/elc4fuiu1snGF66raJbDgEihLhRaaGyFbllRW
64QHLASFqtJqkVjdqgA3PrEE1R+H6a7FPX2FyfVhQcgIZ2sEWoR7i9ei9xFUQZpB
UgaZssfjkGFze7MxVBrER+SVpAPrq5mPsNM4n5lbTVRVgEsagFo3wA/9jyB8Z7tI
Grv9PQUUmxs0/SHFoInshhd7+q/MueVRshTgZH68yAwJhU9JQcDWhOibFqyq6Exz
5sGyZ4LoeYSf8IUellJhyPbrsQOPB6wrOvJ+ufJRmcLQWckXEVV4xnDeoQ8/4KAt
GnEytKs62RDsOxnNcOSbRVCqqJeVhRaDMsAWZbJpTcNn6J3Hvks6ph/2Oh7G2qu5
e7JXkdMv+ZvugrDLn53NBBXSHweZeMYQ2hE9Xpuc1c0J4JFXffbwfmBH4jFIivZn
fbBKyJGSLjMy6NUh1s8+pEDh5jDyNwwoPdL0OTluV5H1dB/ZZs2t6yjRU+ftCn6G
FJ+0EtL3+BVrqKvmsQpymcfxlvQnV/X7t8gAHki+/obtaAc7IIaN1p9duM/FWJVt
FLDTox31BNTdHNMpscCQ2dUCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 325326895712697409056232742553146934287550
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-03 18:35:16 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-01 18:35:15 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tms.opacweb.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 736256419958191934607367052964035852568844653151258448545783511298700216644599012838917466110344613305721318560352773635228215084725797529051082793978247646634768745714947485107787967070929012280149273876738746331646614156235786580347952553413867051544651375574761432427728655223757506431540595974509474358102307283220794720759091120177195790044468922819938112900524922707548158849028671684836359841259648999880638259309397469755735965698943465819282116450375022750752570821203495266123925881039135004549373686863449423033946855492467164291652760935884448852426502182530540684436260967790455209063425626536416847190261575727758826202733607253667565651250444403050851704035717765021437451867167143560790483587679004360541802301675827124980140379887183835102256914754875373904004564318948152938951691009964871023389702919366096212820868505464838941405630845438982779600167324288741309187515910882917034177689462984344207542753308043509526472791882352499410047521022816425509756448935540621866544091938195221510130163527479783427743358717725924815620049727049979859634976446799032989438589749178580912706403248083073733360459152894723810249072168205087997172454580046569048485032894614739633255496842560372312424716144616516538724309461
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							797ba0c0804374de31369a272c483fcf15a9c2c2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2178 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '2000ans2000images.toulouse.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'augustins.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'augustins.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ba-bordeaux.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'babibliobordeaux.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'biblio-nyon.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'capc.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'centrebrassens.ville-sete.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'charles-negre.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-mba.nancy.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-musees.nyon.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-sarreguemines.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-vaucluse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.mba-pau.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.museenouvellecaledonie.nc'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.musees-dunkerque.eu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.musees.marseille.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.museum-histoirenaturelle.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev2.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'documentation-sarreguemines.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'documentation-vaucluse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'documentation.laciteduvin.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domaine-de-sceaux.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dupuy.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'espacebrassens.ville-sete.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'espacemuseal-mcn-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exposition-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'filmoteca-oai.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'filmoteca-oainews.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'filmoteca.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'formation.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'junior.augustins.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'labit.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maison-de-chateaubriand.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maqbordeaux.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'matou.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maugustins.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mba-pau.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mbalyon.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhc.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhn-opacweb.lille.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhn2.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhntlse-ethno.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhntlse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhntoulouse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mian-anatole-jakovsky.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mobydocv7.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-artsanciens-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-breton-oai.awstudio.website'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-cheret.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-cimiez.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-leondierx.re'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-massena.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-matisse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-rops-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-villele.re'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee.coulommiers.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museenouvellecaledonie-collections.gouv.nc'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museenouvellecaledonie-ipkd.gouv.nc'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musees.aude.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musees.ville-poissy.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museeseburomagus.aude.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museespetiet.aude.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'palais-lascaris.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paul-dupuy.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pba.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'provincedenamur-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saintraymond.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sarreguemines-museum.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sp6.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'terra-amata.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tms.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'toulouse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.2000ans2000images.toulouse.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.augustins.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.collections.musee-art-industrie.saint-etienne.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.musee-carouge.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.musee-leondierx.re'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.musee-villele.re'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb499000001891d408b210000040300483046022100da2b48739b8a104291753717adbf58e5eb4ba7a8f5bf001b96fc04106961979a022100fb3e9996b1d13f0e869c79c7ed892e373138944e2db3c39ab3891a75a7ae6ff7007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e000001891d408b21000004030046304402201956735ba42eb9de3d0ff0b3cca1594623b65e78fb9c343062f54a25f0b6d30b02202f1abbd7eafb11c11678f88c7777501508ca070098c4aab7969164515aa21756
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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