groupe-sra.fr
Issued by R3
About this certificate
This digital certificate with serial number 04:81:76:4d:09:ac:c0:04:7f:00:06:05:eb:7a:75:e6:a5:d5 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=groupe-sra.fr
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:81:76:4d:09:ac:c0:04:7f:00:06:05:eb:7a:75:e6:a5:d5Serial Number (int): 392502817966431132570649422379781106083285
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 6b:d7:09:1f:31:c0:0a:7f:e8:b2:37:a1:3a:d7:ce:37:1b:e1:45:90
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): fc:8d:2a:a1:90:a0:62:74:d2:f7:db:c6:c2:c1:02:86:89:94:a6:66
Fingerprint (sha256): b5:86:f2:6f:0d:b7:a9:44:22:2d:03:05:55:bd:43:dc:f0:0c:df:4d:b5:07:63:64:68:ba:09:91:24:e2:a6:7e
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate groupe-sra.fr
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for groupe-sra.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
groupe-sra-preprod.gtec.pro
groupe-sra.fr
www.groupe-sra.fr
groupe-sra.fr
www.groupe-sra.fr
Other certificates including the domain name groupe-sra.fr
(limited to 100 certificates)
xfo.groupe-sra.fr
support.groupe-sra.fr
www.groupe-sra.fr
groupe-sra-preprod.gtec.pro
xfo.groupe-sra.fr
www.groupe-sra.fr
support.groupe-sra.fr
groupe-sra.fr
www.groupe-sra.fr
groupe-sra.fr
groupe-sra.fr
support.groupe-sra.fr
x3.groupe-sra.fr
www.groupe-sra.fr
groupe-sra.fr
groupe-sra.fr
support.groupe-sra.fr
groupe-sra-preprod.gtec.pro
support.groupe-sra.fr
support.groupe-sra.fr
www.groupe-sra.fr
groupe-sra-preprod.gtec.pro
xfo.groupe-sra.fr
www.groupe-sra.fr
support.groupe-sra.fr
groupe-sra.fr
www.groupe-sra.fr
groupe-sra.fr
groupe-sra.fr
support.groupe-sra.fr
x3.groupe-sra.fr
www.groupe-sra.fr
groupe-sra.fr
groupe-sra.fr
support.groupe-sra.fr
groupe-sra-preprod.gtec.pro
support.groupe-sra.fr
Certificate
The complete raw certificate details for groupe-sra.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISBIF2TQmswAR/AAYF63p15qXVMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTQwMjMyMzZaFw0yNDAzMTMwMjMyMzVaMBgxFjAUBgNVBAMT DWdyb3VwZS1zcmEuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB Zb8oIdU5mpJNe0YjC8NNL7qmoy/qTQpIb6xUPnptXYKkkqpQOdYKLbln1KBRVZd5 XH8kSKNW1QpY/Iu1fY3PnsjbQZwXbxy6fLnuuRdx++7Gp4k0F0Z0PLzAWWo5xbZU FqPcEbss3Om+5OkaCy30Q/uo1ZmLkETv9ekXNCxtxg7D4aDX4qHT9PejX+FmCbwe U8Eq7Gsg+4uDPoE4UYYWX0Meeng+riRWr2vg+fZ70dpb4h+8yrVtL/udMmq4QrFn Pp55xHKWJsSjjE6nSScGH+UKFrvDHN8ANz85JEB7Qux7MdfM/O699lrMBVxCKMf6 jwvxRHuZbIRRhKtr/FATAgMBAAGjggI/MIICOzAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFGvXCR8xwAp/6LI3oTrXzjcb4UWQMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MEgGA1UdEQRBMD+CG2dyb3VwZS1zcmEtcHJlcHJvZC5ndGVjLnByb4INZ3JvdXBl LXNyYS5mcoIRd3d3Lmdyb3VwZS1zcmEuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEw ggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bd LIHZu7+rOdiEcwAAAYxmYiGCAAAEAwBHMEUCICR3wXhkRMZV2lpq3yFDa/CG5D6G ahSZTkNZe9nlQ5G8AiEAufKso/cxSnxctKNmDzF/5Pz/EUiP6r4yX0Kd361WK7MA dgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYxmYiH3AAAEAwBH MEUCIQDC+Btuy5pzzlmGskXMfEH9al86KcQaFW2Sy6/9ES3rEAIgOegyoDOGiDqN wIx7WFDzt4K7oxxyjEPCMOqSWJqnCFowDQYJKoZIhvcNAQELBQADggEBAIZmC7Xu qXdFmPicb8IsMLPM17r0yoPBttzl+/2VQ3115tfbVukqgM/60cIVEJuEksqxbHEA eVGahy9SngMEe4jcGiOxxVK0bE5CJYBy/C7kM5vP0XCSFR0S6eZqA1G1bdYtFU0Q lJJzQsGHOaMaB25O5hNg3XcOTMTjTKhPdPlLNh24arMxQrMHSAbFrK08cMwxyCrf xvPMUC+eTT3iA2LrYDzZBIIzYkjfexkkeFzJIs1sA8EuBP44r5GrthwyZsYQbYeI ngrXcCzoY4IafpLrtuY3c5t9WCBNTaJ5qXACI+upqBAFeIZIA9xjDfXPtciNUzVl Xionxw5GmvcPr/4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWW/KCHVOZqSTXtGIwvD TS+6pqMv6k0KSG+sVD56bV2CpJKqUDnWCi25Z9SgUVWXeVx/JEijVtUKWPyLtX2N z57I20GcF28cuny57rkXcfvuxqeJNBdGdDy8wFlqOcW2VBaj3BG7LNzpvuTpGgst 9EP7qNWZi5BE7/XpFzQsbcYOw+Gg1+Kh0/T3o1/hZgm8HlPBKuxrIPuLgz6BOFGG Fl9DHnp4Pq4kVq9r4Pn2e9HaW+IfvMq1bS/7nTJquEKxZz6eecRylibEo4xOp0kn Bh/lCha7wxzfADc/OSRAe0LsezHXzPzuvfZazAVcQijH+o8L8UR7mWyEUYSra/xQ EwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 392502817966431132570649422379781106083285 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 02:32:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-13 02:32:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'groupe-sra.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24414166029215862390650422771323209028792545381551350824736479632412119536507620022928584780988446653096165397605663313900518724157253228969117377950430886162103126200124635198843353638974700507603817497553931420356544832881208036785064423284342864358692541555484961424224089583197260592269264687692356897585857388063529031887401281407565589225913149602652863459101188292784706407765466253325598678106416690893967297173811124240278983462682091073366081803879815935958642723407589881739068498496642783766393028632588260341651654111908530468893483098589016124453792407209653098997415934543989151486237977916039082299411 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6bd7091f31c00a7fe8b237a13ad7ce371be14590 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'groupe-sra-preprod.gtec.pro' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'groupe-sra.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.groupe-sra.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c66622182000004030047304502202477c1786444c655da5a6adf21436bf086e43e866a14994e43597bd9e54391bc022100b9f2aca3f7314a7c5cb4a3660f317fe4fcff11488feabe325f429ddfad562bb300760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c666221f70000040300473045022100c2f81b6ecb9a73ce5986b245cc7c41fd6a5f3a29c41a156d92cbaffd112deb10022039e832a03386883a8dc08c7b5850f3b782bba31c728c43c230ea92589aa7085a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0086660bb5eea9774598f89c6fc22c30b3ccd7baf4ca83c1b6dce5fbfd95437d75e6d7db56e92a80cffad1c215109b8492cab16c710079519a872f529e03047b88dc1a23b1c552b46c4e42258072fc2ee4339bcfd17092151d12e9e66a0351b56dd62d154d1094927342c18739a31a076e4ee61360dd770e4cc4e34ca84f74f94b361db86ab33142b3074806c5acad3c70cc31c82adfc6f3cc502f9e4d3de20362eb603cd90482336248df7b1924785cc922cd6c03c12e04fe38af91abb61c3266c6106d87889e0ad7702ce863821a7e92ebb6e637739b7d58204d4da279a9700223eba9a8100578864803dc630df5cfb5c88d5335655e2a27c70e469af70faffe