thomas-galocha.fr

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:b5:d5:0b:f9:64:91:85:e6:ed:38:af:22:b6:f9:6e:39:37 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=thomas-galocha.fr

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:b5:d5:0b:f9:64:91:85:e6:ed:38:af:22:b6:f9:6e:39:37
Serial Number (int): 410323439876386324202169553724489199401271
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 77:48:5d:b1:05:eb:b6:e3:a3:b8:c5:19:0b:d5:fd:5b:ab:54:42:2b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 38:d2:bf:03:4b:5f:14:1d:21:cc:ad:bb:67:3c:16:7c:03:30:29:e4
Fingerprint (sha256): e9:99:f4:f8:9f:f2:86:c8:5e:45:62:9c:d0:35:b3:86:a4:d3:bd:10:d9:9e:4b:55:7d:f2:42:02:02:56:d8:9c

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate thomas-galocha.fr

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for thomas-galocha.fr

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

thomas-galocha.fr

Other certificates including the domain name thomas-galocha.fr

(limited to 100 certificates)
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
www.thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr
thomas-galocha.fr

Certificate

The complete raw certificate details for thomas-galocha.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 410323439876386324202169553724489199401271
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-01 09:59:05 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-30 09:59:05 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thomas-galocha.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 732798693307169617436750807715404659067627144460492845508536240003992538388254257336960166693545870937033260613908771068511638991224962161438969755694873959442879363596141603218730760243239509283130567392621243500477085531844771597397761018512438143442633764491374762446392130004658081395400964796917022460327242458783067630958878283743042751931559284953915611269756308791789913901651885366213633252674306059164391843037360117759152682365689473172362100558420478560785404899683087387552012735030764988015801479353936484074393540936397284533112078964498966399122411801719463638761093034935444664542387943879282436675814699432583104985241913271511969949030771293187246272899950362971076570933043452380907140191705041868884291187596076469948408578061101935818258925992366173970492283371653796843330660600050729648369552029445033646246555604077915035956251921348756771414522528831294069219297885225241900671616148822085037468437860778822217338948688192172961947488741503422889377165849682982751597950567489240396056620693993046023833517816028624197215851787497399227675131403845801308253758820822857882018487464563232216699895490578467154843705787442999223578544654407998749141731121993925955363112355043886780116617169676626082242735951
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							77485db105ebb6e3a3b8c5190bd5fd5bab54422b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thomas-galocha.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000169d88d804200000403004830460221008c4b5e28393ee241b9ffb9680021093c0057940c31c923871d5b1b0e66cf5eb2022100d21a78a41d7d2871c32915b668176b82ddeff28f1e2d5d6c9738909622a5c718007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000169d88d80350000040300483046022100ce3614a7928a8e168a560b49ee4215ad9351a708b153fcbfc8435941fc9ab4ad022100e7f3b548246fc3df9a5d29f980c50c942954ee7c1ccd095a8181bed876684938
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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