commons.paragon-client.com
Issued by Gandi RSA Domain Validation Secure Server CA 3
About this certificate
This digital certificate with serial number ce:39:de:7b:c1:f6:9f:6d:a5:43:d4:d9:e9:5f:72:6e was issued on by Gandi.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=commons.paragon-client.com
Gandi
Organization:
Gandi
Country:
FR
This certificate will expire on
Certificate Details
Serial Number (hex): ce:39:de:7b:c1:f6:9f:6d:a5:43:d4:d9:e9:5f:72:6eSerial Number (int): 274121440552653910444377406225084543598
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 1b:e4:b1:fb:a1:0a:9e:37:2d:c1:18:ef:35:7d:d6:27:08:7e:de:ae
AuthorityKeyId: 81:11:92:de:66:32:a5:b0:5b:33:3d:65:43:85:fc:d4:04:2d:f1:ae
Fingerprint (sha1): c6:e5:85:fc:71:cc:f3:c7:b8:48:96:eb:7e:ae:11:f2:85:d8:fe:a9
Fingerprint (sha256): f7:ab:0b:1f:a5:47:9f:f6:a1:88:5f:2c:45:8d:5e:2f:87:34:a9:48:94:4f:38:04:25:a8:2b:99:fe:70:3a:5e
Issuing Certificate URL: http://crt.sectigo.com/GandiRSADomainValidationSecureServerCA3.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCheck the revocation status for certificate commons.paragon-client.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for commons.paragon-client.com
Public Key Algorithm
ECDSA
Key Size
256
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
commons.paragon-client.com
Other certificates including the domain name paragon-client.com
(limited to 100 certificates)
www.airpix.io
commons.paragon-client.com
www.victorbruce.tech
www.maplecarestaffing.co.uk
commons.paragon-client.com
www.unirestaurantclub.com
velloretaxihub.com
commons.paragon-client.com
link.paragon-client.com
admin.wishyoumore.paragon-client.com
commons.paragon-client.com
fox.app.confgames.com
www.legalplanet21.com
commons.paragon-client.com
www.unirestaurantclub.com
a0ac.foodle.su
partner.wishyoumore.paragon-client.com
admin.wishyoumore.paragon-client.com
partner.wishyoumore.paragon-client.com
commons.paragon-client.com
commons.paragon-client.com
www.victorbruce.tech
www.maplecarestaffing.co.uk
commons.paragon-client.com
www.unirestaurantclub.com
velloretaxihub.com
commons.paragon-client.com
link.paragon-client.com
admin.wishyoumore.paragon-client.com
commons.paragon-client.com
fox.app.confgames.com
www.legalplanet21.com
commons.paragon-client.com
www.unirestaurantclub.com
a0ac.foodle.su
partner.wishyoumore.paragon-client.com
admin.wishyoumore.paragon-client.com
partner.wishyoumore.paragon-client.com
commons.paragon-client.com
Certificate
The complete raw certificate details for commons.paragon-client.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFuDCCBCCgAwIBAgIRAM453nvB9p9tpUPU2elfcm4wDQYJKoZIhvcNAQEMBQAw VjELMAkGA1UEBhMCRlIxDjAMBgNVBAoTBUdhbmRpMTcwNQYDVQQDEy5HYW5kaSBS U0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBDQSAzMB4XDTIzMTIx NTAwMDAwMFoXDTI1MDExNDIzNTk1OVowJTEjMCEGA1UEAxMaY29tbW9ucy5wYXJh Z29uLWNsaWVudC5jb20wWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAS5DtR3ThFE lPqtShydIHQOXlOBq/qoqv9ibzK77IwiKBzQ8k85Ddymg9SZrU9Mvh/lw94PV40h 9imqdov9ubD0o4IC+zCCAvcwHwYDVR0jBBgwFoAUgRGS3mYypbBbMz1lQ4X81AQt 8a4wHQYDVR0OBBYEFBvksfuhCp43LcEY7zV91icIft6uMA4GA1UdDwEB/wQEAwIH gDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJ BgNVHSAEQjBAMDQGCysGAQQBsjEBAgIaMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8v c2VjdGlnby5jb20vQ1BTMAgGBmeBDAECATCBgwYIKwYBBQUHAQEEdzB1ME4GCCsG AQUFBzAChkJodHRwOi8vY3J0LnNlY3RpZ28uY29tL0dhbmRpUlNBRG9tYWluVmFs aWRhdGlvblNlY3VyZVNlcnZlckNBMy5jcnQwIwYIKwYBBQUHMAGGF2h0dHA6Ly9v Y3NwLnNlY3RpZ28uY29tMCUGA1UdEQQeMByCGmNvbW1vbnMucGFyYWdvbi1jbGll bnQuY29tMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgDPEVbu1S58r/OHW9lp LpvpGnFnSrAX7KwB0lt3zsw7CAAAAYxq5UT4AAAEAwBHMEUCIQCscn38cdavyY53 vue3Zj4lvsXkpqwus7j0vhLPnLDX2gIgbXo7k0URS94eN/cenCU+giEQl0rG0CoI ThyWhvai1ugAdwCi4wrkRe+9rZt+OO1HZ3dT14JbhJTXK14bLMS5UKRH5wAAAYxq 5UUvAAAEAwBIMEYCIQCi/rNYK9PpraL2EDfUqSJb752+45mCqTZCfIB+l4KY0wIh ALAaMysc5wdfuOrh/GNRRudVLI/Lh9Rb0O1r7MmHQpiPAHUATnWjJ1yaEMM4W2zU 3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGMauVE1QAABAMARjBEAiA2EZ0DophaxUUq YqaULLuGNLqHK+LOcUmn9TiV8cAUhwIgEyJdqWLD2KGM/2A3p8UvKIr1aWt+bheq pafxAHR84fUwDQYJKoZIhvcNAQEMBQADggGBAF4rkyrnG7TaEtwpwr00tJloj7hJ W6ajXpLaLSAwrG5nzbr6UL6WvGE6R1XGJg1cRIxfox75OlYmJnyyRbkfP4ySCaFw SUBd7sy9foQAyiSqn9LBdGXSm8shRLkqQuVUAD96KCYTib6MN6mdcphscK0DRQkZ Zpoo5DUuTABfFgTsqpQsZ9Mncipwk67NSfyaly8+aqs/m62R9kAcQLWEvwIZKFjU RueG+F8UQSiJEu36qh8WkPMf5Co3eL04ngb46evmmkGscoPXtN0jydU49VbFEtWi 7XwNVA9BGMNp9FGKGVMtMFSlKbqzxkuSG8dH0aLrVB5m/MkIk1gcSOWcMD4ADzlJ pezFsmOFPWiNNbVsiE3UY+VZjbMj1qDBOA5an4jq3xnd+cC5aSJKwW5Ro/BDa7nG eCAqMzzn88fjkjBnKUeMbdhV8hvyovazAX/nS7mDcTNFpjnlcJqR04SBJ4Pd8yUx 74/Zh1TlR7pYczjdZHZ0Y0GAuNZ5U2Sicik0rA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEuQ7Ud04RRJT6rUocnSB0Dl5Tgav6 qKr/Ym8yu+yMIigc0PJPOQ3cpoPUma1PTL4f5cPeD1eNIfYpqnaL/bmw9A== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 274121440552653910444377406225084543598 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi RSA Domain Validation Secure Server CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'commons.paragon-client.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.2.1 (ecPublicKey) . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.3.1.7 (prime256v1) . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (520 bits) 0004b90ed4774e114494faad4a1c9d20740e5e5381abfaa8aaff626f32bbec8c22281cd0f24f390ddca683d499ad4f4cbe1fe5c3de0f578d21f629aa768bfdb9b0f4 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 811192de6632a5b05b333d654385fcd4042df1ae . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1be4b1fba10a9e372dc118ef357dd627087edeae . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits) 0780 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.26 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/GandiRSADomainValidationSecureServerCA3.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'commons.paragon-client.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (3072 bits) 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