sfi.fr
Issued by R10
About this certificate
This digital certificate with serial number 03:eb:2b:b7:2a:dd:31:0b:ae:b6:73:fd:cf:b5:7d:ab:5c:2b was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sfi.fr
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:eb:2b:b7:2a:dd:31:0b:ae:b6:73:fd:cf:b5:7d:ab:5c:2bSerial Number (int): 341361321885230948267500887627325300759595
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 4a:1b:cb:a5:a3:c4:43:14:77:0b:c9:3c:64:3e:86:2a:87:31:7d:d8
AuthorityKeyId: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8
Fingerprint (sha1): 89:95:8f:16:c1:4c:68:48:b9:83:31:8e:0f:66:cc:e2:f2:30:83:41
Fingerprint (sha256): 3e:1d:32:7c:e1:95:86:66:f5:10:5b:24:7c:d6:6f:31:05:c5:88:a3:17:14:d2:7e:9a:ce:a1:8f:5c:ad:50:3e
Issuing Certificate URL: http://r10.i.lencr.org/
Revocation information
OCSP Server: http://r10.o.lencr.orgCheck the revocation status for certificate sfi.fr
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sfi.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sfi.fr
www.sfi.fr
www.sfi.fr
Other certificates including the domain name sfi.fr
(limited to 100 certificates)
sfi.fr
crm.sfi.fr
crm.sfi.fr
jobs.sfi.fr
cdn.sfi.fr
sfi.fr
jobs.sfi.fr
sfi.fr
sfi.fr
sfi.fr
sfi.fr
crm.sfi.fr
sfi.fr
sfi.fr
cdn.sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
jobs.sfi.fr
sfi.fr
cdn.sfi.fr
sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
sfi.fr
sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
sfi.fr
cdn.sfi.fr
jobs.sfi.fr
jobs.sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
jobs.sfi.fr
cdn.sfi.fr
sfi.fr
jobs.sfi.fr
sfi.fr
sfi.fr
sfi.fr
sfi.fr
crm.sfi.fr
sfi.fr
sfi.fr
cdn.sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
jobs.sfi.fr
sfi.fr
cdn.sfi.fr
sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
sfi.fr
sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
sfi.fr
cdn.sfi.fr
jobs.sfi.fr
jobs.sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
Certificate
The complete raw certificate details for sfi.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgISA+srtyrdMQuutnP9z7V9q1wrMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQwNjA3MTIzMDEyWhcNMjQwOTA1MTIzMDExWjARMQ8wDQYDVQQD EwZzZmkuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhT3hjnzk6 1QTcU2zHDgShDeC4sm5eLOvcx+ck09SQ3pyDfjxSX8+WhEUs+HvI/fFVhcQIa5gX V7JFItWsR5Id2MTQZ+Hq3Rir0zic/mDhqYCDPwVutBVrWC6o8QCptifXsLtDEJ7H Lc4psQc0EcxsPhz/U99mE97YJuZbLXmFp4RCmoqRNDMBcRo/L3CBRRJYEnUpLc7X 2hRtx9PQgVmUO/vQC2mLo4ESni0TxjT8qEfE7YTRP8sUvJ8OrW4QFsQmNf1+elVk hJEOY9lXvbI7t6MlUVxN2wmLVe/E1E/KpXA/P5mCia+pusytztPwqAqIgmlKT3dJ I+5yiVkYeUABAgMBAAGjggIXMIICEzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFEob y6WjxEMUdwvJPGQ+hiqHMX3YMB8GA1UdIwQYMBaAFLu8w0el5LypxsOkcgwQjaI1 4cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMC5vLmxl bmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxlbmNyLm9yZy8wHQYD VR0RBBYwFIIGc2ZpLmZyggp3d3cuc2ZpLmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIB MIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYAGZgQcQnw1lIuMIDSnj9ku4NuKMz5 D1KO7t/OSj8WtMoAAAGP8uSCNwAABAMARzBFAiEA0ypdVSy47WwviH2syvbZm3ZF jetfY0FgfT8bEdZq3cYCIHYf07kqffCkcqorCDs1heOdqeXTsZDofPFbX9lU9pya AHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGP8uSB0QAABAMA SDBGAiEA37qu7Wb+mib1EfnjMaM11A3fghCEe7qSF+swfHZ5m8wCIQC4MTvSJFs9 I4k6jVzVe/1cAIKQQwFmj2rQkyC7VBIuszANBgkqhkiG9w0BAQsFAAOCAQEAYDom E2O3cjVvZP0wKGm6YlZKkDGCtl6EaUvGyrzQ4cKP74c/UNF+o+HA6M5jWbeWx4Xe DQSJtajgjg/klT+8c7vPTlDzRxjctCUxtWNLUcOAytBOKCKPM4yuJuRa55qvAufJ 1AK6D8K7Vp/w/I+ivrucESgpz36Nw5W1u4NL518XebnjR5157z4yJ0TUNctXYyaT V3lpHqluylcXeWyZLQPZ/If3OZ9pcpBEWMi7ZQGGrKJLkD0T59GFtLrjbW9ygR1z ev9GDEhQZeV7hO3T1lvt7Sm6vS/ZdEedfCLZ9DVpKtwmCJeFzCFbNIVmXlQzAhPg d9x5fDjdKU4TB0INwQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4U94Y585OtUE3FNsxw4E oQ3guLJuXizr3MfnJNPUkN6cg348Ul/PloRFLPh7yP3xVYXECGuYF1eyRSLVrEeS HdjE0Gfh6t0Yq9M4nP5g4amAgz8FbrQVa1guqPEAqbYn17C7QxCexy3OKbEHNBHM bD4c/1PfZhPe2CbmWy15haeEQpqKkTQzAXEaPy9wgUUSWBJ1KS3O19oUbcfT0IFZ lDv70Atpi6OBEp4tE8Y0/KhHxO2E0T/LFLyfDq1uEBbEJjX9fnpVZISRDmPZV72y O7ejJVFcTdsJi1XvxNRPyqVwPz+ZgomvqbrMrc7T8KgKiIJpSk93SSPucolZGHlA AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 341361321885230948267500887627325300759595 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-07 12:30:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-05 12:30:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sfi.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28442806868120824862447582202932247813632509603627724225524112282299315923374683159887668670623249113411865683327250042622168490050572359033142539541569785965653369096355086295118089561409977069258702331508905932865726298778300170133847431405124020232904168688785019415246408779914980763588473638533298649214602854992772537492855429232054870451242480816605042656657680570482032833442286370883866923326046597817232054042443755264410336629430874140819426292098836729313950468374146488094493414009900015563735751278262908855749271121021626627901869581682017005892217659453023132643045849670144414744983482073554448105473 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4a1bcba5a3c44314770bc93c643e862a87317dd8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfi.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sfi.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018ff2e482370000040300473045022100d32a5d552cb8ed6c2f887daccaf6d99b76458deb5f6341607d3f1b11d66addc60220761fd3b92a7df0a472aa2b083b3585e39da9e5d3b190e87cf15b5fd954f69c9a007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ff2e481d10000040300483046022100dfbaaeed66fe9a26f511f9e331a335d40ddf8210847bba9217eb307c76799bcc022100b8313bd2245b3d23893a8d5cd57bfd5c0082904301668f6ad09320bb54122eb3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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