*.lanef.com

- SOCIETE FINANCIERE DE LA NEF -

Issued by thawte SHA256 SSL CA

About this certificate

This digital certificate with serial number 78:73:36:d9:30:b8:61:bc:11:23:6a:b4:47:f4:80:77 was issued on by thawte, Inc..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

SOCIETE FINANCIERE DE LA NEF

Organization: SOCIETE FINANCIERE DE LA NEF
Organization unit: IT
State / Province: Rhône
Locality: VAULX-EN-VELIN
Country: FR

thawte, Inc.

Organization: thawte, Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 78:73:36:d9:30:b8:61:bc:11:23:6a:b4:47:f4:80:77
Serial Number (int): 160105586090629457072307332587388698743
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: 2b:9a:35:ae:01:18:38:30:e1:70:7a:05:e0:11:76:a3:ce:bd:90:14

Fingerprint (sha1): 8b:ce:6b:7b:3d:eb:d1:9d:ef:d5:ff:98:76:54:63:68:2c:14:50:a6
Fingerprint (sha256): 70:08:99:54:d3:6e:a7:10:dc:15:f8:73:c6:4e:ab:c9:8a:1e:4f:8a:95:26:d5:94:c6:ef:f3:d5:cc:84:94:63

Issuing Certificate URL: http://tg.symcb.com/tg.crt

Revocation information

OCSP Server: http://tg.symcd.com
CRL Distribution Point: http://tg.symcb.com/tg.crl

Check the revocation status for certificate *.lanef.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.lanef.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.lanef.com
lanef.com

Other certificates including the domain name lanef.com

(limited to 100 certificates)
avosquestions.lanef.com
avosquestions.lanef.com
avosquestions.lanef.com
ag.lanef.com
avosquestions.lanef.com
espace-client.lanef.com
avosquestions.lanef.com
avosquestions.lanef.com
www.bengaluru.tk
*.lanef.com
espace-client.lanef.com
*.lanef.com
wikinef-viecoop.lanef.com
espace-client.lanef.com
ag.lanef.com
espace-client.lanef.com
*.lanef.com
avosquestions.lanef.com
*.lanef.com
espace-client.lanef.com
espace-client.lanef.com
wikinef-viecoop.lanef.com
avosquestions.lanef.com
ag.lanef.com
kadurawebservices.fr
www.lohithshiv.com
financeparticipative.lanef.com
wikinef-viecoop.lanef.com
espace-client.lanef.com
*.lanef.com
avosquestions.lanef.com
avosquestions.lanef.com
ag.lanef.com
*.lanef.com
espace-client.lanef.com
mekong-erlangen.de
avosquestions.lanef.com
ag.lanef.com
espace-client.lanef.com
*.lanef.com
*.lanef.com
madricapp.co.in
espace-client.lanef.com
*.lanef.com
aide.lanef.com
*.lanef.com
avosquestions.lanef.com
avosquestions.lanef.com
*.recette-pro.lanef.com
avosquestions.lanef.com
oks-kamini.com.ua
avosquestions.lanef.com
avosquestions.lanef.com
ag.lanef.com
www.lamela.mk
app.nefpro.lanef.com
*.lanef.com
avosquestions.lanef.com
*.lanef.com
avosquestions.lanef.com
avosquestions.lanef.com
*.lanef.com
wikinef-viecoop.lanef.com
*.lanef.com
mekong-erlangen.de
*.recette-pro.lanef.com
www.preoccupations.ca
*.lanef.com
ag.lanef.com
avosquestions.lanef.com
espace-client.lanef.com
aide.lanef.com
ag.lanef.com

Certificate

The complete raw certificate details for *.lanef.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwoQKj33ZBBFhsHzql1Yc
UuxInJHCBOl2CrztgXonDbYoN5uDi/tAAshyyw/bGpFr2BszQVrKgROoHKYy1UHY
fxWCC+ZvbhV2N4CJv+cAz333tb+ZR8J2J3KiGty8bXCL693bMsbL00tBRZYlei9q
b98CGV+G26m1y69RXATEVIqxyb9au2TN0eT4fTWNgW1mnl6cmp1in+1Xup3ixtaU
QkUs+GI1FYNYutyEO8FtLxrNiDp86SCJBi3BLOCgXspfJyxvc71jqfxJhIg3UFVw
KIqmNV8BlmSRPLJNr5bpZihNEgLu7+SPTlxR6GSrSpRYesxBi9bev2nBfBsgs2PS
SwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 160105586090629457072307332587388698743
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SHA256 SSL CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-03-22 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-22 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Rhône'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'VAULX-EN-VELIN'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SOCIETE FINANCIERE DE LA NEF'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.lanef.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24555343131536775439455470691468564375150969128719942065394071580412425119930324729947781592179676300064012762339519874348667350644887284771115541258733616961339999387478703826983528054181547584261940239261884643509362410812018362785744917933971842511810173508474532176490057131215846963708842811923844467432773385380383515292547558334765466220359706415718810401396195988970932936138656056839194796112598003939074114758670666571757460343176482477876982256957811008344554758089306848461183946489665075820262890466877756981867422172350391917827479353599532800209534050349984591211362686927980988327115295326907247350347
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lanef.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lanef.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2b9a35ae01183830e1707a05e01176a3cebd9014
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tg.symcb.com/tg.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tg.symcd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tg.symcb.com/tg.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015af60c96da000004030046304402200546f384dfdfae9ebbbc93829f6f0deb629a64def48c36d8cbda1ac701aab9b002203b465b6a9f9e209af69f161a5bb4889a389f8301dcbcbd4f2e10f6a9987bf55e007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015af60c96fa000004030047304502204fd0989baa724ac9b3686815aaa3dd1b06547b51ffbcb28d082a039a13f8df21022100de7ca8d8b8be875b3281ca08b3b15bb699390e0377c9c95823b8fa54d19e59f0
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		004dca4f433a4f161a3ac962cb1a8acf27c217c71dd7599114ec1f80294d1a01b726f3268a60a82528be5beb3ee8d59c2917120ff8a49f67e11499a6144044f190fb909e32e1177045d1dd3aa52b81f78b759d2aba78c5c1d9dd5b22e52b30a9e3b1154cf2b703a5b7b299cb52cb33235e8d9808890753a9076440c68ad965eafd4987635e881e781fed4840b5435e6f2272678bb82ca6a0e3e145eef423a0bcf116679beb34fd5925cb33f179069228b6ce1f061a984b19193396b82cf45c0879ec4b276fe7a2d65443226a686a85e8bb1fd4164c443c3de269572713c670f0601747cf1b5df4a4c5b853ab00513f4b0e562b2a49310fbe01eb59e83222d49fb8