festival-avignon.info
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:09:96:64:4c:8c:60:32:97:a0:2d:b7:f3:98:79:41:c7:aa was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=festival-avignon.info
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:09:96:64:4c:8c:60:32:97:a0:2d:b7:f3:98:79:41:c7:aaSerial Number (int): 264599304079207621327530395758901034338218
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 60:f6:c1:75:8e:c9:18:70:46:d7:24:f4:2e:2a:b7:28:62:29:66:73
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 10:57:d7:03:4f:a6:38:e6:6b:66:1c:b2:eb:14:3e:c0:77:81:95:b0
Fingerprint (sha256): f5:53:e9:a0:f5:2a:ec:ab:28:b6:c2:14:fe:5c:6e:b4:57:21:cb:0d:28:81:2c:f8:46:7c:91:c1:68:a8:60:a8
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate festival-avignon.info
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for festival-avignon.info
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
festival-avignon.info
www.festival-avignon.info
www.festival-avignon.info
Other certificates including the domain name festival-avignon.info
(limited to 100 certificates)
festival-avignon.info
festival-avignon.info
sni.cloudflaressl.com
festival-avignon.info
www.festival-avignon.info
www.festival-avignon.info
festival-avignon.info
festival-avignon.info
www.festival-avignon.info
festival-avignon.info
festival-avignon.info
festival-avignon.info
festival-avignon.info
festival-avignon.info
festival-avignon.info
festival-avignon.info
www.festival-avignon.info
sni.cloudflaressl.com
festival-avignon.info
festival-avignon.info
festival-avignon.info
sni.cloudflaressl.com
festival-avignon.info
www.festival-avignon.info
www.festival-avignon.info
festival-avignon.info
festival-avignon.info
www.festival-avignon.info
festival-avignon.info
festival-avignon.info
festival-avignon.info
festival-avignon.info
festival-avignon.info
festival-avignon.info
festival-avignon.info
www.festival-avignon.info
sni.cloudflaressl.com
festival-avignon.info
festival-avignon.info
Certificate
The complete raw certificate details for festival-avignon.info in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgISAwmWZEyMYDKXoC2385h5QceqMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA0MTUxMTQ0MDlaFw0x OTA3MTQxMTQ0MDlaMCAxHjAcBgNVBAMTFWZlc3RpdmFsLWF2aWdub24uaW5mbzCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANZONWkBCNItglGrrV8NwyHa ZinHB7gYy+rwp+DxCfL0HzezVE1HQNH0tg20y2aRAVXDZviOvflt5niqXNFxo0b4 YuuLx9s0DLmRd1tuV2lp+jBiN4jSvgk5mnNjntJpDHpdylKCNCuyoptxk0RxWF96 dSdfZ7TLcptcIlIwou4U+qj48iuYgyE/zZJ7HkOjUkEupq2ULmPeWBmXE8oihxAt 8mkJZ/NGFeX4feQRd0lHIexqEMBWYhEDz0Guc/K6n03uDppAnwg/n2n4jp4ceiGv k377Juelxo0Tm0I86HPI6Ee+5DCkXYkNyMhGingnWJn5CJvNVwEA6E5fUJVxRt0C AwEAAaOCAoQwggKAMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUYPbBdY7JGHBG1yT0 Liq3KGIpZnMwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYB BQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2Vu Y3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2Vu Y3J5cHQub3JnLzA7BgNVHREENDAyghVmZXN0aXZhbC1hdmlnbm9uLmluZm+CGXd3 dy5mZXN0aXZhbC1hdmlnbm9uLmluZm8wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYL KwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlw dC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQB0ftqDMa0zEJEhnM4lT0Jw wr/9XkIgCMY3NXnmEHvMVgAAAWohBrY1AAAEAwBGMEQCIHaqbxZbMITDrXH+ba28 JAORNftWYeXIqaqs8WtNQt3IAiBcTsh3GPQtZkgyBHpvBZLw2bqa8uGyjS7EJQzG gzMNzQB2AGPy283oO8wszwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABaiEGtjgA AAQDAEcwRQIhAOIj9Dtca65zXLkVtDCJsOZi+8MY1DkAcfq7obhVHPAKAiB6ij6l sdRg1khsNpuFmRELmpLn01/q3BKvY8Cz22NgYTANBgkqhkiG9w0BAQsFAAOCAQEA IBv+A0XCC80hrMdDJKhBTAmvKgE+TmjmR40mVdCrbfJgnx6LxklM2nhfZQcMFYRC 3W3iPgui4R4nrfuYLZ0QcN8p4oGYi0ya21dDtMNEj/MQj2BnrYXMNXz6dalWp3zI f2IU67X2p/Jib7KoxbXOOvT3b7K6hLDoucfUaUkT25TBypVhVw2hA7CG6czoUN5D hk/tp+4enKHLHrm8CRVR+zOtixNl8UTa9Lvi2q7+ii9Ug6eDsI3CaLJ6INGf/zYy SAyy9sXyblgo4cVz+M5L6ByOtFit79RUjupSw+D0ptA9EpyZurjtJduzW+wQfF4G +dLsam0lmfAfwRzUNLCv1A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1k41aQEI0i2CUautXw3D IdpmKccHuBjL6vCn4PEJ8vQfN7NUTUdA0fS2DbTLZpEBVcNm+I69+W3meKpc0XGj Rvhi64vH2zQMuZF3W25XaWn6MGI3iNK+CTmac2Oe0mkMel3KUoI0K7Kim3GTRHFY X3p1J19ntMtym1wiUjCi7hT6qPjyK5iDIT/NknseQ6NSQS6mrZQuY95YGZcTyiKH EC3yaQln80YV5fh95BF3SUch7GoQwFZiEQPPQa5z8rqfTe4OmkCfCD+fafiOnhx6 Ia+Tfvsm56XGjRObQjzoc8joR77kMKRdiQ3IyEaKeCdYmfkIm81XAQDoTl9QlXFG 3QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 264599304079207621327530395758901034338218 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-15 11:44:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-14 11:44:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'festival-avignon.info' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27053563377286530627916185376094157221441222032620231942335021620543466800223316621357223631756006326497513005591506413979982044255608670373925706606629682561486747442835767139397904060192365635715726345943233396189292862837898823149355494833468093581898760279687034149187954704992198358996742477989126550229089927331023305471654070710070578412385636602280922269683529373582598092766125748686114022202657508235131401109824531173384971433452075534460178200752425256228541941336996625016490530431495682580562563326651392326764865259661958492710096555543396167531356539516270899573051216558747262371191666584292275865309 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 60f6c1758ec9187046d724f42e2ab72862296673 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'festival-avignon.info' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.festival-avignon.info' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016a2106b6350000040300463044022076aa6f165b3084c3ad71fe6dadbc24039135fb5661e5c8a9aaacf16b4d42ddc802205c4ec87718f42d664832047a6f0592f0d9ba9af2e1b28d2ec4250cc683330dcd00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016a2106b6380000040300473045022100e223f43b5c6bae735cb915b43089b0e662fbc318d4390071fabba1b8551cf00a02207a8a3ea5b1d460d6486c369b8599110b9a92e7d35feadc12af63c0b3db636061 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00201bfe0345c20bcd21acc74324a8414c09af2a013e4e68e6478d2655d0ab6df2609f1e8bc6494cda785f65070c158442dd6de23e0ba2e11e27adfb982d9d1070df29e281988b4c9adb5743b4c3448ff3108f6067ad85cc357cfa75a956a77cc87f6214ebb5f6a7f2626fb2a8c5b5ce3af4f76fb2ba84b0e8b9c7d4694913db94c1ca9561570da103b086e9cce850de43864feda7ee1e9ca1cb1eb9bc091551fb33ad8b1365f144daf4bbe2daaefe8a2f5483a783b08dc268b27a20d19fff3632480cb2f6c5f26e5828e1c573f8ce4be81c8eb458adefd4548eea52c3e0f4a6d03d129c99bab8ed25dbb35bec107c5e06f9d2ec6a6d2599f01fc11cd434b0afd4