sfi.fr
Issued by R3
About this certificate
This digital certificate with serial number 04:cb:f4:b5:47:d6:5b:95:f5:06:57:d1:1c:ee:14:f4:7c:8b was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=sfi.fr
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:cb:f4:b5:47:d6:5b:95:f5:06:57:d1:1c:ee:14:f4:7c:8bSerial Number (int): 417851737105728662006608766225863467629707
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 01:96:f0:7b:d7:fb:23:08:c4:80:67:5b:eb:1d:8f:65:a0:68:b6:5d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d1:8f:15:a6:5e:33:4a:15:55:fa:85:90:b2:f5:5f:84:48:8e:35:70
Fingerprint (sha256): 53:c2:2c:f5:3b:45:ee:6b:3d:da:7d:93:d8:2e:ee:b7:e6:86:8e:da:22:99:f2:fe:0e:42:87:55:3b:e1:7f:35
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate sfi.fr
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sfi.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sfi.fr
www.sfi.fr
www.sfi.fr
Other certificates including the domain name sfi.fr
(limited to 100 certificates)
sfi.fr
crm.sfi.fr
crm.sfi.fr
jobs.sfi.fr
cdn.sfi.fr
sfi.fr
jobs.sfi.fr
sfi.fr
sfi.fr
sfi.fr
sfi.fr
crm.sfi.fr
sfi.fr
sfi.fr
cdn.sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
jobs.sfi.fr
sfi.fr
cdn.sfi.fr
sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
sfi.fr
sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
sfi.fr
cdn.sfi.fr
jobs.sfi.fr
jobs.sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
jobs.sfi.fr
cdn.sfi.fr
sfi.fr
jobs.sfi.fr
sfi.fr
sfi.fr
sfi.fr
sfi.fr
crm.sfi.fr
sfi.fr
sfi.fr
cdn.sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
jobs.sfi.fr
sfi.fr
cdn.sfi.fr
sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
sfi.fr
sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
sfi.fr
cdn.sfi.fr
jobs.sfi.fr
jobs.sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
jobs.sfi.fr
sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
crm.sfi.fr
Certificate
The complete raw certificate details for sfi.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISBMv0tUfWW5X1BlfRHO4U9HyLMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA0MTQxMDMwMjJaFw0yMzA3MTMxMDMwMjFaMBExDzANBgNVBAMT BnNmaS5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMDoFgRNZlbT kEdupkJC+67PBKSG4QxT2pCVP2rlhiYAmHwNTaKU9ML2ZGg31bNKbLyUcpI+Y4Zw dOMa9jh507xLPk29bk7hWEEdZTu+d3VKDO3jWAFePmQY72KOFXv0hbG+QW54sIrU MSOGyH1dV1MD44lEhyoX3C6vGDCUxdeOZ/AN4Msfp+Ee0UQAm8gmeQgPHPUAQvqZ gTcanA6KB17Wzjn4OYOsZVfJfWd5JkesFF09+yFhK3NDSK7FaiuvaWfeZNTtKsID fhNCBo58hHedq1GLB8cFInr6vFBd+9YejyC60ANUBj8gd94i+3O2Mh/y5N13maJN 48iCbCBbTrkCAwEAAaOCAk4wggJKMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUAZbw e9f7IwjEgGdb6x2PZaBotl0wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsU wsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5j ci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wHQYDVR0R BBYwFIIGc2ZpLmZyggp3d3cuc2ZpLmZyMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcG CysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5 cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcAtz77JN+cTbp18jnFulj0 bF38Qs96nzXEnh0JgSXttJkAAAGHf4fcqAAABAMASDBGAiEA0BkA5LzkOYkv/eHm A4zr1QKcHpKRwMzLwT9szK00bm8CIQCHndtlqlRa3V0I6syKGjz0NTguUA0Yw6q+ BP5TBzngWQB2AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABh3+H 3LAAAAQDAEcwRQIhALoc3YYjPTwzUzm927p3IlK5xRo2zYPYsGC+xh2hkuo9AiB+ 70Cs5AUAsy3oDPb2o87R4+9qEF3qcA+kbVMXHpw02jANBgkqhkiG9w0BAQsFAAOC AQEAoohS0XQxgzWGPfIdMRgUqk9bcvWjRWWlBhuQXGhtu4lW8poGshtWXMTEyNfX N1NjuFEM4n0XA7OirWq5JK81nBVyTVGC+oCaebbMnkqGFKoy/W2pRPL2fMiuvNTl JujlSxG2xCN0vck4H77fN2JqGThTb33965yUWrFwltPp2uLZR/uxaCPN5l6nVBmH omD7Fz20j1+HNALKbAWQeo/L1DS/ZEvLiMTEm5pxXrw/wSA6SVgPkiDR4m0G4ZhO zN3otMirxIxH+SZXXfkAJ3ywaY6XYRJMQEqHwl6DzoBNg6TwgFh5Julg4hAlmSl1 DYHhAzGCXdaKepLiIjy4AaI7BQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOgWBE1mVtOQR26mQkL7 rs8EpIbhDFPakJU/auWGJgCYfA1NopT0wvZkaDfVs0psvJRykj5jhnB04xr2OHnT vEs+Tb1uTuFYQR1lO753dUoM7eNYAV4+ZBjvYo4Ve/SFsb5BbniwitQxI4bIfV1X UwPjiUSHKhfcLq8YMJTF145n8A3gyx+n4R7RRACbyCZ5CA8c9QBC+pmBNxqcDooH XtbOOfg5g6xlV8l9Z3kmR6wUXT37IWErc0NIrsVqK69pZ95k1O0qwgN+E0IGjnyE d52rUYsHxwUievq8UF371h6PILrQA1QGPyB33iL7c7YyH/Lk3XeZok3jyIJsIFtO uQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 417851737105728662006608766225863467629707 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-14 10:30:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-13 10:30:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sfi.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24352200427091924362400575836241458169002862732210727900033090523988403698789642334118073929973460957206226962090971366522667034837543569987410673407609715249648876937448480807517631929554217964305639031047286641651746628360365416181405239873687479901799957742721804300386197245428976569160308069644157440829947985895763705121163461061454191240856220282977796466994750930685942275694379700721831655863482975347350643457512137824247447556474263127773072450417397659153359362046149370831227267535324218657086178923112487830355499431182931450062516355196831331239975397622375304173802333847952703180829528488849161539257 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0196f07bd7fb2308c480675beb1d8f65a068b65d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfi.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sfi.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb499000001877f87dca80000040300483046022100d01900e4bce439892ffde1e6038cebd5029c1e9291c0cccbc13f6cccad346e6f022100879ddb65aa545add5d08eacc8a1a3cf435382e500d18c3aabe04fe530739e059007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e000001877f87dcb00000040300473045022100ba1cdd86233d3c335339bddbba772252b9c51a36cd83d8b060bec61da192ea3d02207eef40ace40500b32de80cf6f6a3ced1e3ef6a105dea700fa46d53171e9c34da . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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