thomas-galocha.fr

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:23:7c:d1:6b:6d:9d:01:a2:63:0e:3c:0e:48:75:e9:5a:20 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=thomas-galocha.fr

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:23:7c:d1:6b:6d:9d:01:a2:63:0e:3c:0e:48:75:e9:5a:20
Serial Number (int): 360524938209696884582030086768620531702304
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: bf:a8:d6:c5:a8:8d:b6:13:31:65:3f:74:b1:f2:a4:aa:0d:1a:cf:f0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 10:c8:96:84:fe:40:16:88:cd:2e:64:4a:84:9e:5d:c6:70:1c:7a:54
Fingerprint (sha256): a5:a2:a8:01:a2:51:25:86:2f:23:3f:59:e0:9f:0b:55:e8:9e:a9:02:9e:ca:8a:b8:59:91:53:e2:0e:6d:0d:f8

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate thomas-galocha.fr

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for thomas-galocha.fr

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

thomas-galocha.fr

Other certificates including the domain name thomas-galocha.fr

(limited to 100 certificates)
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
www.thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr

Certificate

The complete raw certificate details for thomas-galocha.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 360524938209696884582030086768620531702304
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-31 10:39:15 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-01 10:39:15 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thomas-galocha.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 771891393503174656103807622789964449639473261583390612974555241107458940342763129025473173126073203874673551924719619019242918862052272304824118104924705929296560621886964804751425001073650566893245199525086235736147758261560418852345924275750585378355303673793833200910296221990035854161781336382455351910812534748734429409468402320491461880180734623777563619627122020063564664540439311861735889155758170396136694841530980203121048194891742515525422119307307156140745091849469258809945629107771949346909849544391592301748771307131519682853050738577389433039039039579445763317516095511862590124519971123526306108899469671497431517916055434172308572228319331930531155610665466949482308306639339534776547688352637089950649017688183469787179857298772664862525192131050253412699856596417354335352016140554599466338678592083820269073884541093052085758827562207124154323725797175160384937247456007920717318315146875368108939608539316108634283103900942648277911304577370682720046412394857141796176755748468384093520388524668452675017024681483073027967229450812192892439212642668579773469263893631012972164425192360228206417381438598323534651771575379529200762984844124060082135662663960181912237056925358142155981492881525448676086833808129
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							bfa8d6c5a88db61331653f74b1f2a4aa0d1acff0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thomas-galocha.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000168a3b4b6310000040300473045022100b7ce894fb8c728c544075fc5b34bc12091d8464e56e1753a6a40adf113205f53022016d1805077ad515e536c327b1ab33b09b0a4102ad6b1c265dcbe286e86a6683500750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000168a3b4b82b0000040300463044022055591795351c90cdc5c17e91174fc74ddabb239fb63744925156c487c873959a02207c6f38632f01f18377798cb16fe1754fac79a01cf1d2f8053a3edd3a87be8563
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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