DV SSL/TLS Certificate for *.hemispheregauche.fr

Certificate is witin its validity period

Issued by Sectigo Limited (Sectigo RSA Domain Validation Secure Server CA)

About the *.hemispheregauche.fr DV SSL/TLS Certificate

This certificate with serial number 83:8a:81:25:95:e6:00:b7:6d:65:4a:dd:b8:db:c6:09 for *.hemispheregauche.fr was issued on by Sectigo Limited.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for *.hemispheregauche.fr provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 83:8a:81:25:95:e6:00:b7:6d:65:4a:dd:b8:db:c6:09
Serial Number (int): 174848023822973992441929848024653874697
Serial Number Length: 128 bits, 16 octets

Subject Key Identifier: 44:ce:89:4f:10:0d:ef:d2:06:a9:ac:2b:a1:4e:b3:c9:7b:71:79:5d
Authority Key Identifier: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1

Fingerprint (SHA-1): dd:c1:8c:4a:58:e0:5d:cd:42:e0:f5:6e:e3:fd:29:36:8a:31:5a:cc
Fingerprint (SHA-256): 84:0e:f7:80:3e:97:87:c9:3c:5f:3a:7b:02:de:b9:d9:34:42:b3:86:07:ac:c8:c7:b0:98:cb:d4:b0:9d:3f:37

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt

Revocation Information

OCSP Server: http://ocsp.sectigo.com

Check the revocation status for certificate *.hemispheregauche.fr
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for *.hemispheregauche.fr

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for *.hemispheregauche.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3+6qtaAQ4yy2kC/Hykk8
QGZEed5T2ILcO38J/YywCcHtKDEcxFPtkAxtBjU7yRFDjayRTd2821dij0colevP
uQFB51i/NBKJjtu4NOub6JXzqOx3lYe7GYOKXwfo1A7AU538zju4p4+b+K0CaZL9
P09MX5Lg9q6OnKlAX/pUDO0/tJz4ffzDVM0fbE+z82Fg6awcvJ4odr1rYDZZd9BK
UnyHZC2F+Ue6OxyS1a6efiCamvGlukEqJNqTgrYi09bvXQRF+YNbP/kzKkml/YnB
uTSxo+gp9kx2l7wC2Y7R1O57RZEr4kzhmX88yTG+cuTzBG3aYl2p+lNoP+1qvdhO
LwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 174848023822973992441929848024653874697
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-24 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-01-07 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.hemispheregauche.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28268833009621759744776691147632054182389332856079124889789783567012906758722342407924285389798655951487143202348231057891354188584800694927323787709058509928080686966999820810285838960367665141745018900015635499036605349289891880129484978425127756123568365325863409043322782781528290728341361158131534170291842866760937198490479082910669977689241274997083445297341808266457795455457061317717250233829681682362668764500909670375559958248899984468170377169215068682502031165738795791412044328903519852657368596358707863232724130408934538271558541853918972652787122456720765093430221678551354034682346577800178530012719
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							44ce894f100defd206a9ac2ba14eb3c97b71795d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes)
							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
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hemispheregauche.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hemispheregauche.fr'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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