tms.opacweb.fr

Issued by R3

About this certificate

This digital certificate with serial number 03:4a:49:e5:5e:c2:34:fb:c3:d7:d6:f2:5f:05:c8:11:e6:59 was issued on by Let's Encrypt.

With 72 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=tms.opacweb.fr

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:4a:49:e5:5e:c2:34:fb:c3:d7:d6:f2:5f:05:c8:11:e6:59
Serial Number (int): 286615977549036253427169068098269664634457
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 05:e5:fa:49:82:e8:53:cd:ee:5c:e7:b4:c4:1b:0d:6b:b6:35:05:bc
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 14:07:7d:b4:73:39:16:4f:aa:34:7a:ea:6d:89:34:1e:44:74:de:a7
Fingerprint (sha256): df:11:67:b8:d0:3e:fb:b2:b4:d7:6f:6c:d1:e5:d8:90:3e:e7:9f:85:69:8b:67:d5:ec:df:fe:8d:54:50:4c:ae

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate tms.opacweb.fr

72

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for tms.opacweb.fr

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

2000ans2000images.toulouse.fr
augustins.opacweb.fr
augustins.org
ba-bordeaux.opacweb.fr
babibliobordeaux.opacweb.fr
biblio-nyon.opacweb.fr
capc.opacweb.fr
centrebrassens.ville-sete.fr
charles-negre.opacweb.fr
collections-mba.nancy.fr
collections-musees.nyon.ch
collections-sarreguemines.opacweb.fr
collections-vaucluse.opacweb.fr
collections.mba-pau.opacweb.fr
collections.musees-dunkerque.eu
collections.musees.marseille.fr
collections.museum-histoirenaturelle.opacweb.fr
demo.opacweb.fr
dev.opacweb.fr
dev2.opacweb.fr
documentation-sarreguemines.opacweb.fr
documentation-vaucluse.opacweb.fr
documentation.laciteduvin.com
domaine-de-sceaux.opacweb.fr
dupuy.opacweb.fr
espacebrassens.ville-sete.fr
espacemuseal-mcn-collection.opacweb.fr
exposition-collection.opacweb.fr
filmoteca-oai.opacweb.fr
filmoteca-oainews.opacweb.fr
filmoteca.opacweb.fr
formation.opacweb.fr
labit.opacweb.fr
maison-de-chateaubriand.opacweb.fr
maqbordeaux.opacweb.fr
matou.opacweb.fr
mba-pau.opacweb.fr
mbalyon.opacweb.fr
mhc.opacweb.fr
mhn-opacweb.lille.fr
mhn2.opacweb.fr
mhntlse-ethno.opacweb.fr
mhntlse.opacweb.fr
mhntoulouse.opacweb.fr
mian-anatole-jakovsky.opacweb.fr
mobydocv7.opacweb.fr
musee-artsanciens-collection.opacweb.fr
musee-breton-oai.awstudio.website
musee-cheret.opacweb.fr
musee-cimiez.opacweb.fr
musee-leondierx.re
musee-massena.opacweb.fr
musee-matisse.opacweb.fr
musee-villele.re
musee.coulommiers.fr
museenouvellecaledonie-collections.gouv.nc
museenouvellecaledonie-ipkd.gouv.nc
musees.ville-poissy.fr
museeseburomagus.aude.fr
museespetiet.aude.fr
palais-lascaris.opacweb.fr
paul-dupuy.opacweb.fr
pba.opacweb.fr
prod.opacweb.fr
provincedenamur-collection.opacweb.fr
saintraymond.opacweb.fr
sarreguemines-museum.opacweb.fr
sp6.opacweb.fr
terra-amata.opacweb.fr
tms.opacweb.fr
www.collections.musee-art-industrie.saint-etienne.fr
www.musee-carouge.ch

Other certificates including the domain name opacweb.fr

(limited to 100 certificates)

Certificate

The complete raw certificate details for tms.opacweb.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 286615977549036253427169068098269664634457
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-13 16:47:53 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-12 16:47:52 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tms.opacweb.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 806913908612077352160539063135455572910984095435800858071512668664548541834158680530796951494294041814799902369891535445579423967225952391516910027680449601996781499249180076169074274390745363973636149340364896153759850370676867363609561497814197113191691274645510129932629513196570595505715272117466554406323077372851575502674091507004210728787462489481840002413026491984645384896065729904314602244658190406770825902201930712397116960020753982768444995491198539886761089270935505413599692928040960589749641884201883883924418595125067267165746473533966587683578981117289198130076430441086343114760183839474762587700073182329562052642270055775943624371864188108100761836971568935901457718367519881587918318872425269955145135085132624501355396036567231613498764449803665060190962792554363835021167671379195646717736198863943316639444861857713463482609802238595268460245909908629154388886029607391459542023716825438539133491336354695886824070555161189672385764203778407935280528384508462539011090863457458725746204076393418311494899924386653852806931711765997698453854809332547384825624198918611401532264361371027363250787250196714282361678617713979835229038005210089942289866758373282198193339973180017311316097864708871144834871266091
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							05e5fa4982e853cdee5ce7b4c41b0d6bb63505bc
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1923 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '2000ans2000images.toulouse.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'augustins.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'augustins.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ba-bordeaux.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'babibliobordeaux.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'biblio-nyon.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'capc.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'centrebrassens.ville-sete.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'charles-negre.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-mba.nancy.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-musees.nyon.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-sarreguemines.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections-vaucluse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.mba-pau.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.musees-dunkerque.eu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.musees.marseille.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collections.museum-histoirenaturelle.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev2.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'documentation-sarreguemines.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'documentation-vaucluse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'documentation.laciteduvin.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domaine-de-sceaux.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dupuy.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'espacebrassens.ville-sete.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'espacemuseal-mcn-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exposition-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'filmoteca-oai.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'filmoteca-oainews.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'filmoteca.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'formation.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'labit.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maison-de-chateaubriand.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maqbordeaux.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'matou.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mba-pau.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mbalyon.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhc.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhn-opacweb.lille.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhn2.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhntlse-ethno.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhntlse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhntoulouse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mian-anatole-jakovsky.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mobydocv7.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-artsanciens-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-breton-oai.awstudio.website'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-cheret.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-cimiez.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-leondierx.re'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-massena.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-matisse.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee-villele.re'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musee.coulommiers.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museenouvellecaledonie-collections.gouv.nc'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museenouvellecaledonie-ipkd.gouv.nc'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musees.ville-poissy.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museeseburomagus.aude.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'museespetiet.aude.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'palais-lascaris.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paul-dupuy.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pba.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'provincedenamur-collection.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saintraymond.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sarreguemines-museum.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sp6.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'terra-amata.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tms.opacweb.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.collections.musee-art-industrie.saint-etienne.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.musee-carouge.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb499000001877bbb1ee500000403004730450221008e49c276b94e3ddb4835d3710d7f555a46fdb1dc973fb156f261afa383f57c6b022011dced86540f8b7dec0f5ffc9b93021fd7cf61dc09ef40d390c1f7e1cbfa0a8c0077007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb52000001877bbb1ee50000040300483046022100c3ebd7451d5edd431a0aca3cfbd55a4dba6e629fe649c148dbdf18b38ae213020221008d31e1af0648c921ca417a3370316ed52ff11ec01f73a694b89b4abe73acc377
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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