*.billetterie.centrepompidou.fr
Issued by Gandi Standard SSL CA 2
About this certificate
This digital certificate with serial number d8:a2:e9:92:85:b2:5b:22:25:15:a4:6b:5c:fd:27:f3 was issued on by Gandi.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.billetterie.centrepompidou.fr,OU=Domain Control Validated+OU=Gandi Standard Wildcard SSL
Gandi
Organization:
Gandi
State / Province:
Paris
Locality: Paris
Country: FR
Locality: Paris
Country: FR
This certificate has expire since
Certificate Details
Serial Number (hex): d8:a2:e9:92:85:b2:5b:22:25:15:a4:6b:5c:fd:27:f3Serial Number (int): 287959136590750974012188094305130063859
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 1a:ba:3e:d4:bf:73:e0:65:db:88:75:d5:c8:07:0a:15:d2:ff:aa:39
AuthorityKeyId: b3:90:a7:d8:c9:af:4e:cd:61:3c:9f:7c:ad:5d:7f:41:fd:69:30:ea
Fingerprint (sha1): 7f:08:78:e0:06:60:8e:2f:e2:36:5d:8d:21:85:fc:cc:0e:50:c0:8e
Fingerprint (sha256): 76:1c:ad:27:14:97:f6:7d:3e:5e:83:ac:4f:50:37:cf:a3:4d:5b:9b:90:38:54:0a:5d:3b:4b:5e:d4:76:49:1b
Issuing Certificate URL: http://crt.usertrust.com/GandiStandardSSLCA2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.usertrust.com/GandiStandardSSLCA2.crl
Check the revocation status for certificate *.billetterie.centrepompidou.fr
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.billetterie.centrepompidou.fr
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.billetterie.centrepompidou.fr
billetterie.centrepompidou.fr
billetterie.centrepompidou.fr
Other certificates including the domain name centrepompidou.fr
(limited to 100 certificates)
www.centrepompidou.fr
media.iri.centrepompidou.fr
collection.centrepompidou.fr
collection.centrepompidou.fr
www.iri.centrepompidou.fr
information.centrepompidou.fr
www.iri.centrepompidou.fr
amisducentrepompidou.fr
www.iri.centrepompidou.fr
media.iri.centrepompidou.fr
collection.centrepompidou.fr
www.iri.centrepompidou.fr
editions.centrepompidou.fr
courriel.centrepompidou.fr
www.centrepompidou.fr
collection.centrepompidou.fr
ldt.iri.centrepompidou.fr
bilan-activite-2018.centrepompidou.fr
ldt.iri.centrepompidou.fr
collection.centrepompidou.fr
media.iri.centrepompidou.fr
collection.centrepompidou.fr
cosmopolis.centrepompidou.fr
ldt.iri.centrepompidou.fr
voeux.centrepompidou.fr
boutique.centrepompidou.fr
videotrottoir.centrepompidou.fr
www.iri.centrepompidou.fr
boutique.centrepompidou.fr
amisducentrepompidou.fr
collection.centrepompidou.fr
information.centrepompidou.fr
*.billetterie.centrepompidou.fr
www.centrepompidou.fr
billetterie.centrepompidou.fr
www.iri.centrepompidou.fr
amisducentrepompidou.fr
centrepompidou.fr
www.centrepompidou.fr
cosmopolis.centrepompidou.fr
media.iri.centrepompidou.fr
ldt.iri.centrepompidou.fr
www.centrepompidou.fr
amisducentrepompidou.fr
collection.centrepompidou.fr
collection.centrepompidou.fr
amisducentrepompidou.fr
ldt.iri.centrepompidou.fr
collection.centrepompidou.fr
amis.centrepompidou.fr
centrepompidou.fr
hybrid.centrepompidou.fr
media.iri.centrepompidou.fr
ldt.iri.centrepompidou.fr
ldt.iri.centrepompidou.fr
cosmopolis.centrepompidou.fr
cosmopolis.centrepompidou.fr
*.centrepompidou.fr
centrepompidou.fr
media.iri.centrepompidou.fr
boutique.centrepompidou.fr
ldt.iri.centrepompidou.fr
collection.centrepompidou.fr
amisducentrepompidou.fr
collection.centrepompidou.fr
bilan-activite-2018.centrepompidou.fr
centrepompidou.fr
api.centrepompidou.fr
boutique.centrepompidou.fr
ldt.iri.centrepompidou.fr
www.centrepompidou.fr
cosmopolis.centrepompidou.fr
centrepompidou.fr
media.iri.centrepompidou.fr
amisducentrepompidou.fr
amisducentrepompidou.fr
billetterie.centrepompidou.fr
collection.centrepompidou.fr
boutique.centrepompidou.fr
www.iri.centrepompidou.fr
centrepompidou.fr
bilan-activite-2018.centrepompidou.fr
invitations.centrepompidou.fr
ldt.iri.centrepompidou.fr
ldt.iri.centrepompidou.fr
centrepompidou.fr
ldt.iri.centrepompidou.fr
*.centrepompidou.fr
ldt.iri.centrepompidou.fr
billetterie.centrepompidou.fr
*.billetterie.centrepompidou.fr
centrepompidou.fr
media.iri.centrepompidou.fr
amis.centrepompidou.fr
webmail.centrepompidou.fr
ldt.iri.centrepompidou.fr
centrepompidou.fr
voeux.centrepompidou.fr
media.iri.centrepompidou.fr
amisducentrepompidou.fr
media.iri.centrepompidou.fr
collection.centrepompidou.fr
collection.centrepompidou.fr
www.iri.centrepompidou.fr
information.centrepompidou.fr
www.iri.centrepompidou.fr
amisducentrepompidou.fr
www.iri.centrepompidou.fr
media.iri.centrepompidou.fr
collection.centrepompidou.fr
www.iri.centrepompidou.fr
editions.centrepompidou.fr
courriel.centrepompidou.fr
www.centrepompidou.fr
collection.centrepompidou.fr
ldt.iri.centrepompidou.fr
bilan-activite-2018.centrepompidou.fr
ldt.iri.centrepompidou.fr
collection.centrepompidou.fr
media.iri.centrepompidou.fr
collection.centrepompidou.fr
cosmopolis.centrepompidou.fr
ldt.iri.centrepompidou.fr
voeux.centrepompidou.fr
boutique.centrepompidou.fr
videotrottoir.centrepompidou.fr
www.iri.centrepompidou.fr
boutique.centrepompidou.fr
amisducentrepompidou.fr
collection.centrepompidou.fr
information.centrepompidou.fr
*.billetterie.centrepompidou.fr
www.centrepompidou.fr
billetterie.centrepompidou.fr
www.iri.centrepompidou.fr
amisducentrepompidou.fr
centrepompidou.fr
www.centrepompidou.fr
cosmopolis.centrepompidou.fr
media.iri.centrepompidou.fr
ldt.iri.centrepompidou.fr
www.centrepompidou.fr
amisducentrepompidou.fr
collection.centrepompidou.fr
collection.centrepompidou.fr
amisducentrepompidou.fr
ldt.iri.centrepompidou.fr
collection.centrepompidou.fr
amis.centrepompidou.fr
centrepompidou.fr
hybrid.centrepompidou.fr
media.iri.centrepompidou.fr
ldt.iri.centrepompidou.fr
ldt.iri.centrepompidou.fr
cosmopolis.centrepompidou.fr
cosmopolis.centrepompidou.fr
*.centrepompidou.fr
centrepompidou.fr
media.iri.centrepompidou.fr
boutique.centrepompidou.fr
ldt.iri.centrepompidou.fr
collection.centrepompidou.fr
amisducentrepompidou.fr
collection.centrepompidou.fr
bilan-activite-2018.centrepompidou.fr
centrepompidou.fr
api.centrepompidou.fr
boutique.centrepompidou.fr
ldt.iri.centrepompidou.fr
www.centrepompidou.fr
cosmopolis.centrepompidou.fr
centrepompidou.fr
media.iri.centrepompidou.fr
amisducentrepompidou.fr
amisducentrepompidou.fr
billetterie.centrepompidou.fr
collection.centrepompidou.fr
boutique.centrepompidou.fr
www.iri.centrepompidou.fr
centrepompidou.fr
bilan-activite-2018.centrepompidou.fr
invitations.centrepompidou.fr
ldt.iri.centrepompidou.fr
ldt.iri.centrepompidou.fr
centrepompidou.fr
ldt.iri.centrepompidou.fr
*.centrepompidou.fr
ldt.iri.centrepompidou.fr
billetterie.centrepompidou.fr
*.billetterie.centrepompidou.fr
centrepompidou.fr
media.iri.centrepompidou.fr
amis.centrepompidou.fr
webmail.centrepompidou.fr
ldt.iri.centrepompidou.fr
centrepompidou.fr
voeux.centrepompidou.fr
media.iri.centrepompidou.fr
amisducentrepompidou.fr
Certificate
The complete raw certificate details for *.billetterie.centrepompidou.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHtDCCBpygAwIBAgIRANii6ZKFslsiJRWka1z9J/MwDQYJKoZIhvcNAQELBQAw XzELMAkGA1UEBhMCRlIxDjAMBgNVBAgTBVBhcmlzMQ4wDAYDVQQHEwVQYXJpczEO MAwGA1UEChMFR2FuZGkxIDAeBgNVBAMTF0dhbmRpIFN0YW5kYXJkIFNTTCBDQSAy MB4XDTE5MTAyMTAwMDAwMFoXDTIxMTAyNTIzNTk1OVowczEhMB8GA1UECxMYRG9t YWluIENvbnRyb2wgVmFsaWRhdGVkMSQwIgYDVQQLExtHYW5kaSBTdGFuZGFyZCBX aWxkY2FyZCBTU0wxKDAmBgNVBAMMHyouYmlsbGV0dGVyaWUuY2VudHJlcG9tcGlk b3UuZnIwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQClbl9xyv1L9NtP xghSkNvNRGukRQBPCp4O+iWKmFFBlq2vG7pbu4hQlXKVqBBdTsWmUp6jPD5xuE4v f72a6Mj42YfXcECpTz0mcLa4SALrShQOWMmiaPiFYa/+wYrvqINcoDghWejNvGu7 UtdnMEoBEXAQ2n5eQhlRK/juRiXTHwfK3QRPogn851uXeMAtszdu199cuBKfEr2m YKnePi27YoMPn9oAhnXqDX6EFxdwQ6OIJJRoJHiXuCek6jWdbPztvJWy3PYGisdO I7LlZlkWcCtxN7T72ONr6AMhHoHJzBUuJKKjgtBDb8lQkWGMJ5ZC30HafYDQItTG U658QdaC6ip+RW0qltxC47f2LT5V6V/5E5pziyA8k0JIVsKTcu7ECkuz85FolYP9 psm5hFn3bd5wWhZOy95ndut2QMpAF/dbLH2AJhzxgLAFZebunL02mzN+ToF4I70P h4Qb2JdWVy0UqV3dDox8Rqqu6nlWhrDIt1jHvnpXY03A8yqYDvxYD/crh1X+1ZNd zmy9r3q2Le2AlpuwxpCaFt90QCPTUBVMxDiV83pbxQXbKLjq1exqdR7RE6r7Esxw az2eV+wxiAvCLe79cvzp685eT/cxYYm7IwR4GdsjiHxBU2l5eyYgGXh0XvNPm/Q2 4tS51sIJhWRF+tXETzgBsMYYCHrlVQIDAQABo4IDVTCCA1EwHwYDVR0jBBgwFoAU s5Cn2MmvTs1hPJ98rV1/Qf1pMOowHQYDVR0OBBYEFBq6PtS/c+Bl24h11cgHChXS /6o5MA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjBLBgNVHSAERDBCMDYGCysGAQQBsjEBAgIaMCcwJQYI KwYBBQUHAgEWGWh0dHBzOi8vY3BzLnVzZXJ0cnVzdC5jb20wCAYGZ4EMAQIBMEEG A1UdHwQ6MDgwNqA0oDKGMGh0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9HYW5kaVN0 YW5kYXJkU1NMQ0EyLmNybDBzBggrBgEFBQcBAQRnMGUwPAYIKwYBBQUHMAKGMGh0 dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9HYW5kaVN0YW5kYXJkU1NMQ0EyLmNydDAl BggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTBJBgNVHREEQjBA gh8qLmJpbGxldHRlcmllLmNlbnRyZXBvbXBpZG91LmZygh1iaWxsZXR0ZXJpZS5j ZW50cmVwb21waWRvdS5mcjCCAYAGCisGAQQB1nkCBAIEggFwBIIBbAFqAHcAfT7y +I//iFVoJMLAyp5SiXkrxQ54CX8uapdomX4i8NcAAAFt7o01ZAAABAMASDBGAiEA tHIGHZbhXMIUutAVYKiQ8ic+MK1czb4haBHeJqz2l5QCIQCOdcxA8fwqlm+mRfS9 8axDELi8yhEsvHnyhSLmTfZOVgB3AESUZS6w7s6vxEAH2Kj+KMDa5oK+2MsxtT/T M5a1toGoAAABbe6NNUUAAAQDAEgwRgIhAMbTnrmt+9c/6hojtf9NLh+Uc1dk5D0Y bfCmO0LJsCJrAiEAqv5nBvLnMAERuforuWT3tgPwyVLMpKHiGHDiaacDA80AdgBV gdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAW3ujTUgAAAEAwBHMEUC IQD9n3fj7vIb0D/pPZQdZ4NCVHO1BKvJYQsCLWOwRicu3QIgBVofVaHbZcJTUTz4 MhFP7PYPR9e4KbfDzFJ6REq+Z2MwDQYJKoZIhvcNAQELBQADggEBAEK5T85UvvTP E0y7CuG7poQtcnnC3POwTJhDLnwjkYV8dIZQTe+tB6PuJ4/58ZGhjP+Q/F+LtBB6 QreAWr5YDc7i17SyLidhwB9Hi81/YvptNKAFMl4BDNbeLrDdDr0jTZMGB/JsD+oo 1am6y++/VMcdwJ/bH7p5vBayu90ObhlEczr0w6MaaoCCl/Qk2Ti93soUU3A3iDvD FeFcNf6TWdiTYhTsgwy/SlvbQD4a+MoscsU+tUKsY0NMBfrZKbW12n/4VWAtHfU/ T9UWN7tiyBluwjBGwTeMoKFFl18EELy2XOlBeW4sWqpQgyUisGMS/2BmNIImMeSt 4yV6alS3xuc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApW5fccr9S/TbT8YIUpDb zURrpEUATwqeDvoliphRQZatrxu6W7uIUJVylagQXU7FplKeozw+cbhOL3+9mujI +NmH13BAqU89JnC2uEgC60oUDljJomj4hWGv/sGK76iDXKA4IVnozbxru1LXZzBK ARFwENp+XkIZUSv47kYl0x8Hyt0ET6IJ/Odbl3jALbM3btffXLgSnxK9pmCp3j4t u2KDD5/aAIZ16g1+hBcXcEOjiCSUaCR4l7gnpOo1nWz87byVstz2BorHTiOy5WZZ FnArcTe0+9jja+gDIR6BycwVLiSio4LQQ2/JUJFhjCeWQt9B2n2A0CLUxlOufEHW guoqfkVtKpbcQuO39i0+Velf+ROac4sgPJNCSFbCk3LuxApLs/ORaJWD/abJuYRZ 923ecFoWTsveZ3brdkDKQBf3Wyx9gCYc8YCwBWXm7py9Npszfk6BeCO9D4eEG9iX VlctFKld3Q6MfEaqrup5VoawyLdYx756V2NNwPMqmA78WA/3K4dV/tWTXc5sva96 ti3tgJabsMaQmhbfdEAj01AVTMQ4lfN6W8UF2yi46tXsanUe0ROq+xLMcGs9nlfs MYgLwi3u/XL86evOXk/3MWGJuyMEeBnbI4h8QVNpeXsmIBl4dF7zT5v0NuLUudbC CYVkRfrVxE84AbDGGAh65VUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 287959136590750974012188094305130063859 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi Standard SSL CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi Standard Wildcard SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.billetterie.centrepompidou.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 674900184745026238447488166539768824389047296646381030009193758822161522516572269997485667334471286494333681217120575958190633218249325141168966834822020549909077468927025469904020260453179787185952464478451919748410174822459886422790943679520033768454965987275035614770553783122501681553773374819487679195567025973522241435227492274490873828516938479801888351449180469736816390373078536230645855531323957475258871329666655397819349965884076634124139066366888498998987198077874148078053341412533609224159500892333088684542994529423419366488843672905547178982539536280745491288891107149855237796502088485278138571506935605342680600533336662365692414181241568723685603081113482856992326830486607069816158646003226247405670603877650793833899785285507567809581148883031409973829042033360678502377368262824695649664663708323155168478553026366508741553173164963824381243071415344663003074036036670925644215299506002187758456299902610435372568930463359288162322803958019940208779550043100303846952011093540354513519673825324828418478423456423964104948027053746394812281401608584044003472494677629937040207770246867746881232597782580820297833782528442332155895871191263137536482442776873915939787569871800050435997739267763823014805480596821 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b390a7d8c9af4ecd613c9f7cad5d7f41fd6930ea . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1aba3ed4bf73e065db8875d5c8070a15d2ffaa39 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.26 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/GandiStandardSSLCA2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/GandiStandardSSLCA2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.billetterie.centrepompidou.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'billetterie.centrepompidou.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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