DV SSL/TLS Certificate for laroq.fr

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the laroq.fr DV SSL/TLS Certificate

This certificate with serial number 05:d8:ed:f9:70:08:fd:4b:07:45:44:2a:af:79:ea:39:40:27 for laroq.fr was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for laroq.fr provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:d8:ed:f9:70:08:fd:4b:07:45:44:2a:af:79:ea:39:40:27
Serial Number (int): 509378743102984832895522895319668862042151
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 40:40:5f:3f:da:c2:21:01:75:14:9b:6c:ab:ce:de:32:82:05:51:a3
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 9d:b0:1f:68:47:12:fd:1a:31:00:97:a0:5b:c2:46:2e:7c:27:90:65
Fingerprint (SHA-256): 55:ad:82:56:0c:8d:7d:21:e5:97:c4:5b:de:27:89:f5:91:a8:19:71:40:f5:b4:18:56:ce:31:e2:2c:d4:79:a6

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/40.crl

Check the revocation status for certificate laroq.fr
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for laroq.fr

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for laroq.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIE+jCCA+KgAwIBAgISBdjt+XAI/UsHRUQqr3nqOUAnMA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTAwHhcNMjUwNjA3MDQwODE0WhcNMjUwOTA1MDQwODEzWjATMREwDwYDVQQD
EwhsYXJvcS5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMF2fJs4
TMuubnqUdZNAzXH5nmo5Etg2QtREiXA6lRkmvuc+h05yIa/9MV6wB7GLDdGXBcd5
BfWM2y9W0nyg68Y0ebxQkcbxGd08+u4qVmZku82upktyKqWMJnEVNFJ62DGHWxNB
+4iqmMQr5VBymRdcNBjkTSWXt2U7l+6AgozIaPhRcu3Xqdw3GBXbp6X2Ke7HeeHP
GPNWtmnVVVK62p0h13Bsy3vDDTozgr0rfpI4L+5P22utnhnPu/Cuw7g7oPTPt6gS
2F5BBQwNUK19SNLZ8396sOaqF4+r3qK4JV3NmCl5rmffzFy+rALPRaBjQh79f3hL
4MR5TDbfWOuCfOMCAwEAAaOCAiYwggIiMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE
FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU
QEBfP9rCIQF1FJtsq87eMoIFUaMwHwYDVR0jBBgwFoAUu7zDR6XkvKnGw6RyDBCN
ojXhyOgwMwYIKwYBBQUHAQEEJzAlMCMGCCsGAQUFBzAChhdodHRwOi8vcjEwLmku
bGVuY3Iub3JnLzAfBgNVHREEGDAWggoqLmxhcm9xLmZygghsYXJvcS5mcjATBgNV
HSAEDDAKMAgGBmeBDAECATAuBgNVHR8EJzAlMCOgIaAfhh1odHRwOi8vcjEwLmMu
bGVuY3Iub3JnLzQwLmNybDCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3AO08S9bo
BsKkogBX28sk4jgB31Ev7cSGxXAPIN23Pj/gAAABl0jIvTkAAAQDAEgwRgIhAL5M
JKHQAXozjZlTdDTmDw1HhqdJ0D074y++4itr9f6qAiEAmB/35tonT3NQ22pm19vy
Q0IMrcrTNFI2BH/oXpJOwOYAdwDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2XjbapflTA
/kwNsAAAAZdIyL1MAAAEAwBIMEYCIQDbH1KkpwaAAh31boK3kDz1aUFxrVP49Lfb
ds3hhD4DsgIhAJ71lxFl14PVNpLR6T3npzTvdr5hi/2ZSYbZzhzQa2/6MA0GCSqG
SIb3DQEBCwUAA4IBAQBOLu/5BTP3om1QKzipNaHtCJwf1AJ4ClrhmSOt7pkDn9wG
3f+gxT1JEvKGlEYO/G1xTi4Kel8fkIbj4iXomx6OwUi8uHwVuWTXYniKem4BCEnY
CBxuj3LFvZ5M9l0Bj4fZR4HXPC+srd+/9pBO2Ga9+CJilheUu1CJ0/lbTzRJMtbT
5gE6ANBg9LUCeImbGaThvke+dpzNsyepnuBdh3Q9LzivCTLnteKASWd9u/+EOu6N
etjUNxM0Ld1AwdnLC5KLPR/P10/Ijd5wi286I1GTxj4ERoUGbwh1Xoj2zHz1FpPi
N91Pq/Pe3sGJZbiDemVGxfYiVdYXXzMdc/0IiKFV
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXZ8mzhMy65uepR1k0DN
cfmeajkS2DZC1ESJcDqVGSa+5z6HTnIhr/0xXrAHsYsN0ZcFx3kF9YzbL1bSfKDr
xjR5vFCRxvEZ3Tz67ipWZmS7za6mS3IqpYwmcRU0UnrYMYdbE0H7iKqYxCvlUHKZ
F1w0GORNJZe3ZTuX7oCCjMho+FFy7dep3DcYFdunpfYp7sd54c8Y81a2adVVUrra
nSHXcGzLe8MNOjOCvSt+kjgv7k/ba62eGc+78K7DuDug9M+3qBLYXkEFDA1QrX1I
0tnzf3qw5qoXj6veorglXc2YKXmuZ9/MXL6sAs9FoGNCHv1/eEvgxHlMNt9Y64J8
4wIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 509378743102984832895522895319668862042151
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-07 04:08:14 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-05 04:08:13 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'laroq.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24422420849294447850657620287894911441168302686181241078605242173527082999328590760857415643745678347317129280787846874421734368049972458932980162093698035168977442178804104536162098813807531231074446932853278161659934849137094626556858576897023782496888297483839485840078955586705869512598646109557434312425251408602320254676718062259400028500007477787975399389883504329444716632435218736625194258606171714319212961192803120247547640144363802180410555131825530015240761477232313321078312526766527979290109022555020173672634008406785261024929737790280791462457306654044292949460010691265702665362608490859893302131939
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							40405f3fdac2210175149b6cabcede32820551a3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.laroq.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'laroq.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/40.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700ed3c4bd6e806c2a4a20057dbcb24e23801df512fedc486c5700f20ddb73e3fe00000019748c8bd390000040300483046022100be4c24a1d0017a338d99537434e60f0d4786a749d03d3be32fbee22b6bf5feaa022100981ff7e6da274f7350db6a66d7dbf243420cadcad3345236047fe85e924ec0e6007700ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db00000019748c8bd4c0000040300483046022100db1f52a4a70680021df56e82b7903cf5694171ad53f8f4b7db76cde1843e03b20221009ef5971165d783d53692d1e93de7a734ef76be618bfd994986d9ce1cd06b6ffa
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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