france-residences.fr
Issued by R3
About this certificate
This digital certificate with serial number 03:78:03:30:39:5c:fa:0e:95:c3:da:26:fb:f0:78:59:c5:af was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=france-residences.fr
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:78:03:30:39:5c:fa:0e:95:c3:da:26:fb:f0:78:59:c5:afSerial Number (int): 302174979903493647218941316950513935828399
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ed:75:af:ac:1a:d4:cd:eb:a6:40:4e:96:04:ee:75:c2:dd:43:4b:cf
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 41:82:72:24:89:ef:d0:f9:1f:a3:fc:72:1f:21:04:60:a1:40:e1:20
Fingerprint (sha256): f7:06:81:9d:91:eb:02:92:e4:83:33:28:4b:6f:e5:80:7e:76:46:6d:bd:29:09:d7:7a:53:0a:44:6c:62:45:8e
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate france-residences.fr
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for france-residences.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
france-residences.fr
mail.france-residences.fr
www.france-residences.fr
mail.france-residences.fr
www.france-residences.fr
Other certificates including the domain name france-residences.fr
(limited to 100 certificates)
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
www.france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
france-residences.fr
www.france-residences.fr
france-residences.fr
Certificate
The complete raw certificate details for france-residences.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgISA3gDMDlc+g6Vw9om+/B4WcWvMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MTcwODI1MzBaFw0yMzEyMTYwODI1MjlaMB8xHTAbBgNVBAMT FGZyYW5jZS1yZXNpZGVuY2VzLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEA5YsDRE4wPhKufvNpiGLgjM1CbN22CMhTlzcLgyDA+3UOd6YUGn+DEQFO CZtTqEufsYr9lK7zQVdQkGddRvOZvGvfIFEd2hr/oMZWwLXooQMT6mtWKUy73fZl BgNKy/I8qILAuwExqyOtRByCWjhUBSFK6hmJIiNtoBBdc1QQ/5sapuEqClaOwSwV CDrCJe8JTOpQtBnF1wgsHAqoLSjP8MLmnzQbTERU3uvcfIXzWh9Aoc+/p5sGxxXl +OjHngALWMXw4cfQOeLmXOyHy8bWPmRalJWXHsNyKWd8/YCyrjscw3WJQBCi1Cf1 hIUO8vAJLaWdTV0w8tgLNqcX3a2JlwIDAQABo4ICSjCCAkYwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBTtda+sGtTN66ZATpYE7nXC3UNLzzAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzBUBgNVHREETTBLghRmcmFuY2UtcmVzaWRlbmNlcy5mcoIZbWFpbC5m cmFuY2UtcmVzaWRlbmNlcy5mcoIYd3d3LmZyYW5jZS1yZXNpZGVuY2VzLmZyMBMG A1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAejKM VNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGKonWX3QAABAMARjBEAiBp X6wLEnlbg17Lv5/TudgAW6XNie7ggdj32S9nSAi6lgIgSaNr+/I24J5cnEFLjSYW 16bIAwwhrYrm+5dzCL8JLx8AdgC3Pvsk35xNunXyOcW6WPRsXfxCz3qfNcSeHQmB Je20mQAAAYqidZfbAAAEAwBHMEUCIQDpK+yflPHTcOu66B8WdP6upxsS4ioNlr+2 dGnJQbeTfwIgPpbSO7B3tUxc+D7kFN+z2ANYkjC4sZjWj4unLcjWlfUwDQYJKoZI hvcNAQELBQADggEBAHP0sDeAja/kiz50pK+peQUAWDqnjMk51hgEk6YVocfJi5ZG xgIn/eXuf6TW89v6JVq/XpLdCAifO8KdrU0t6qAYXf3aPqOblh+xxhKV07CM/JgS kCxRC/3n0/3MeqgyUa/YFpBM7rPM60Xz3LV/GtWN3rTuI6kp0eULZa3gF2iOQrHj dlE4ePiEGkTF2oMEh0ZoHD4YIva1Z8Z+h4UVHEgvhQADdzmV1ftM7n6yXGzm5p+b KKM2YeWNXbazyAbF3BpRJuRNQqmz7j4ommXUmFuhcdWL+bW4LoNZd8ZhUBSrsd5A oqaRDdfQYvEJ5l1hW/mytQUC3hhAqoLlpKPv1MQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5YsDRE4wPhKufvNpiGLg jM1CbN22CMhTlzcLgyDA+3UOd6YUGn+DEQFOCZtTqEufsYr9lK7zQVdQkGddRvOZ vGvfIFEd2hr/oMZWwLXooQMT6mtWKUy73fZlBgNKy/I8qILAuwExqyOtRByCWjhU BSFK6hmJIiNtoBBdc1QQ/5sapuEqClaOwSwVCDrCJe8JTOpQtBnF1wgsHAqoLSjP 8MLmnzQbTERU3uvcfIXzWh9Aoc+/p5sGxxXl+OjHngALWMXw4cfQOeLmXOyHy8bW PmRalJWXHsNyKWd8/YCyrjscw3WJQBCi1Cf1hIUO8vAJLaWdTV0w8tgLNqcX3a2J lwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 302174979903493647218941316950513935828399 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-17 08:25:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-16 08:25:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'france-residences.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28977121584564565703967448853126369944025222765837851494100531967015551918515373509293525638650716821137203970248437269399511778360529560805062038359242038665982611202772633646131986114672990399811772308525461279746888529038500711282483748269808987521077595229561385458196878111810548852223681906278620253293710425250395193116041060003660835841655191617087516543338790965554210554156346769308737262148911852356860953268112158024073442522741442000115147638366129016942262969487130942780198373475690381732615129929191742473245377596408341089714281709970384088045049229340847673665397597727599520734763815567422959487383 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ed75afac1ad4cdeba6404e9604ee75c2dd434bcf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (77 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'france-residences.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.france-residences.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.france-residences.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018aa27597dd00000403004630440220695fac0b12795b835ecbbf9fd3b9d8005ba5cd89eee081d8f7d92f674808ba96022049a36bfbf236e09e5c9c414b8d2616d7a6c8030c21ad8ae6fb977308bf092f1f007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018aa27597db0000040300473045022100e92bec9f94f1d370ebbae81f1674feaea71b12e22a0d96bfb67469c941b7937f02203e96d23bb077b54c5cf83ee414dfb3d803589230b8b198d68f8ba72dc8d695f5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0073f4b037808dafe48b3e74a4afa9790500583aa78cc939d6180493a615a1c7c98b9646c60227fde5ee7fa4d6f3dbfa255abf5e92dd08089f3bc29dad4d2deaa0185dfdda3ea39b961fb1c61295d3b08cfc9812902c510bfde7d3fdcc7aa83251afd816904ceeb3cceb45f3dcb57f1ad58ddeb4ee23a929d1e50b65ade017688e42b1e376513878f8841a44c5da83048746681c3e1822f6b567c67e8785151c482f850003773995d5fb4cee7eb25c6ce6e69f9b28a33661e58d5db6b3c806c5dc1a5126e44d42a9b3ee3e289a65d4985ba171d58bf9b5b82e835977c6615014abb1de40a2a6910dd7d062f109e65d615bf9b2b50502de1840aa82e5a4a3efd4c4