thomas-galocha.fr

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:f1:0e:52:83:82:4b:f2:a9:00:88:29:44:69:1e:69:27:82 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=thomas-galocha.fr

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:f1:0e:52:83:82:4b:f2:a9:00:88:29:44:69:1e:69:27:82
Serial Number (int): 343363945850829122251729055796313832630146
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 40:c7:28:b3:ef:8f:4a:b6:25:cb:a5:2c:1e:da:24:51:e3:50:8f:72
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): cf:91:77:24:79:68:e9:5c:a4:cc:c0:5f:45:b8:43:6d:6b:c9:cb:de
Fingerprint (sha256): a4:82:eb:15:64:5d:28:4f:63:ef:69:5f:e3:ce:6d:10:72:90:ef:36:1e:f1:37:12:24:bb:da:a0:62:1d:59:9a

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate thomas-galocha.fr

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for thomas-galocha.fr

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

thomas-galocha.fr

Other certificates including the domain name thomas-galocha.fr

(limited to 100 certificates)
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
www.thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr

Certificate

The complete raw certificate details for thomas-galocha.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGWTCCBUGgAwIBAgISA/EOUoOCS/KpAIgpRGkeaSeCMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjgwOTIxMTNaFw0x
OTEyMjcwOTIxMTNaMBwxGjAYBgNVBAMTEXRob21hcy1nYWxvY2hhLmZyMIICIjAN
BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3RtZcjvZfQkUWrRyfn/OouNd7tda
TIdkX3qlpl9k1CETrIkw5c7cegyC1Kao9CeH4fOGjNFky+LzNESVfSafIDgm0FT0
f/m1sRqfEDQZ4DBsCVS7A59z0OS5Qg+xtBWVLBtrbCjjzi0hIcNJxk/iUbAQk8F2
1chjCXe9L1WHiEBpA5z/wQroR/YkY6WLNlTbYCJeRLbn9mw/xx9+4uyZx+bDn0fx
yU5IpM+5tUbOLwUA6CmNqeSkkMJl24k5jSw1DHcm9cRy3KgKkfqPvi1JDbYCX4mJ
Cim5Tgxr+NhQtQpKmxmY/syVGJjmkcQRAvXB1/nu6KzIoYBSd1K1GgWUAUILz0kn
sFHyBHFFmVrFdu1zDMSYtVWXsHjM8E/K9YF/ZaiTdXFcc9iBvTxj3BFjnxxPlXMQ
P4Gnnd3fVbfKHCSwztcX5ioT4i0QEIsv6jZPpbymSb3LjFHJqGokdCjSfHLeEMIV
whdU/oaIIKj30Q6yJSdSah+HaaRte1hbInpZfLEw9XAT95leDlhFKEhI6Q/eAzQ4
b5VfzZLHIbOc/Ie/1FC2cTGlYntNMuNQNI6LojRGEyLpFDMDS1DVDeCZ0GES0Di4
yCOwXQxjXioDMD7CE/2s3nJtz5i1fYRqFK5ME3gSLgeXENQa8p7i9NOXXb9ioijY
kXLMFpTPxPxKd2sCAwEAAaOCAmUwggJhMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE
FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU
QMcos++PSrYly6UsHtokUeNQj3IwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl
7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5p
bnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p
bnQteDMubGV0c2VuY3J5cHQub3JnLzAcBgNVHREEFTATghF0aG9tYXMtZ2Fsb2No
YS5mcjBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsG
AQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkC
BAIEgfQEgfEA7wB2AOJpS64m6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d8dv+AAAB
bXdjhE4AAAQDAEcwRQIhAJdALpSWn+Ld7tSaRDvPVP7vo4DVkAE7G22AIa9s+uPo
AiAHqLJD7aXjp2/7j/N5Q3Z9wjvQ8KlCXqAiLp9TiIPl0AB1AGPy283oO8wszwty
hCdXazOkjWF3j711pjixx2hUS9iNAAABbXdjhk0AAAQDAEYwRAIgSyde4KRVVN9N
xj/uWBl/PS5Ii8dCNwLwo7MvxL6DL18CIDewwpR60cPUA0TgX8OWOuZrQ5hvvj1+
IQObk4rrAG1/MA0GCSqGSIb3DQEBCwUAA4IBAQBJ6iDddNXmyaA9Una4cNz2xblc
nro4VGoZPsgMZcZMhUFZhBl50wjRN/2AMtn6N9ORfEo/1L4vtkBNiVOMNvJhrB3i
tRN8SLYiWEi9LQnnA71Yyw+SQve6BnJrX54ASx0LR7AwuMxiFKV8tOqgz37yxfeT
35bZNwcpD59E0BfrVeuJnA/gnjzfoZ9waH55RZrJYLJNbBuFfZzsq5hbqsXQHKFb
7HIo5GjKf3OvOLPDwOt5XWnLLzLygWetnhdHg9k1P7mJDPaLIKwhvdfNMticAESj
KLNSwlyIIpbJdAMnN1o6pKGkB/S0MquDQmjx5v/w6ihlPD6V9gnLj/WFvL/L
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 343363945850829122251729055796313832630146
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-28 09:21:13 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-27 09:21:13 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thomas-galocha.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 902037182058607256593342170146385946018013254145149966264324212123609029594796664606677436638308446499225994698180745248020227567459313189849641950611659081547175166638546295378663521034522694803276671095394682250648986786801840944684591837227766898249437772042272552183359049441829525665604850493843899221765854026971298948105393138416986570021235744681266462465390319029231045185829679606812012964911031529750995315581352758886581448619910806901437441170394407009320473898178420077120198314206288680551984689060044986816711438785956212911764761722289910111167189527794942944327781088522293785045131121600668283607551469956836943642783999173844526406433052717779874125709269507301512800732613801712708982199368227385779563915827963523151023306641850166442568960518597049533652326940205389208120454265849677531233376559171740691186343223923440511933827572484627576152910062380190931981142424381896551874747164420255385242029144181776218652167227691746140671675245991793709103157292570360898043820185679673109327901226741061891591537732515032729345992509877876664582352509278217059249901274096028363680175898180500355451843694923518409878642790649709584077837901126532042413048575466747267261604109726945826244854202963573550518794091
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							40c728b3ef8f4ab625cba52c1eda2451e3508f72
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thomas-galocha.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d7763844e000004030047304502210097402e94969fe2ddeed49a443bcf54feefa380d590013b1b6d8021af6cfae3e8022007a8b243eda5e3a76ffb8ff37943767dc23bd0f0a9425ea0222e9f538883e5d000750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d7763864d000004030046304402204b275ee0a45554df4dc63fee58197f3d2e488bc7423702f0a3b32fc4be832f5f022037b0c2947ad1c3d40344e05fc3963ae66b43986fbe3d7e21039b938aeb006d7f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0049ea20dd74d5e6c9a03d5276b870dcf6c5b95c9eba38546a193ec80c65c64c854159841979d308d137fd8032d9fa37d3917c4a3fd4be2fb6404d89538c36f261ac1de2b5137c48b6225848bd2d09e703bd58cb0f9242f7ba06726b5f9e004b1d0b47b030b8cc6214a57cb4eaa0cf7ef2c5f793df96d93707290f9f44d017eb55eb899c0fe09e3cdfa19f70687e79459ac960b24d6c1b857d9cecab985baac5d01ca15bec7228e468ca7f73af38b3c3c0eb795d69cb2f32f28167ad9e174783d9353fb9890cf68b20ac21bdd7cd32d89c0044a328b352c25c882296c9740327375a3aa4a1a407f4b432ab834268f1e6fff0ea28653c3e95f609cb8ff585bcbfcb