cerval.fr

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:bd:88:ab:7a:ea:64:52:ca:ca:c6:4b:f2:78:87:7d:65:78 was issued on by Let's Encrypt.

With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=cerval.fr

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:bd:88:ab:7a:ea:64:52:ca:ca:c6:4b:f2:78:87:7d:65:78
Serial Number (int): 325831890526552077813088446035591255909752
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 57:53:46:eb:34:a5:ba:69:45:cc:97:10:3a:10:78:49:06:19:2c:4c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): ae:19:b7:da:fb:cf:31:18:0d:d8:af:90:a6:f6:94:ec:a9:dd:ea:a0
Fingerprint (sha256): b7:df:c9:c8:18:f9:08:8d:c2:c2:14:a3:0a:88:18:3e:94:84:ab:32:f5:85:71:f0:7f:31:d5:4d:32:eb:09:a3

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate cerval.fr

5

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for cerval.fr

Public Key Algorithm

RSA

Key Size

3072

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

cerval.fr
cos.cerval.fr
nature-saint-denis.fr
www.cerval.fr
www.nature-saint-denis.fr

Other certificates including the domain name cerval.fr

(limited to 100 certificates)
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr
cerval.fr

Certificate

The complete raw certificate details for cerval.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 325831890526552077813088446035591255909752
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-26 01:06:55 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-24 01:06:55 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cerval.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 4600732601731062425594732099340467651156090809583455184943029883666600041752508702157511573836191284959935603574542778702396985572425943320912439437391880550428831133503830847249246322004269910224182076719106920878235623889794446649516432215290407665996866280537456304723434374788349095814660059701163070142782358675603937842868127039969985921362037740969043407470926245532125699481790860695934135314709977473285365821229280029366407011122849813322598764661890910302883977151981526622913702720096647713812646713348846876103865288237486289475945252608746432098472539371378860276014232004546889295672217933873842520317140648045317008458812130635818915145743115488866124428208955833092441004473973694647798156011617825069522801110879587941151965442614960226829857212126848926296681897625995137664635138825301650580114073096961802650953365989772882651053957502798565836853780589682780908645326736926994125672869471479379245049177
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							575346eb34a5ba6945cc97103a10784906192c4c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cerval.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cos.cerval.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nature-saint-denis.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cerval.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nature-saint-denis.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016b918931f80000040300463044022027d3fb5f7e838f7d8e19c2b479a7972dad424a4b8cf1abe83aa2846d9de79d4202200b30185d6c3bb89b41ab87b0663170f9aac590c7077b1a468125c9f44ef37e83007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b918931e7000004030047304502204d413412700d0ceb9042d8479e13499d38fa087aa3592a669e3d5f9754b1a2b30221009e38adc5f0286dcecfb49d52f3ee152b0423d38646e0da3b34d022018125287a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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