compendium-heroicum.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:93:4a:29:e8:d8:fa:58:14:65:fb:81:d5:64:bb:82:c0:91 was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=compendium-heroicum.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:93:4a:29:e8:d8:fa:58:14:65:fb:81:d5:64:bb:82:c0:91Serial Number (int): 311456946211227766656040088713236221968529
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e0:4a:0d:c4:52:1f:e4:7a:c9:9e:25:56:be:9a:35:8f:e9:bd:fe:ef
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 2f:41:75:d5:29:ab:83:92:54:18:6e:8c:c5:1a:78:3b:9a:32:2c:7c
Fingerprint (sha256): 00:28:99:a1:d1:12:db:46:b0:c1:99:e7:4a:6b:c0:96:39:a2:03:0c:78:bf:f9:1a:b4:d9:a0:8f:f9:71:20:45
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate compendium-heroicum.de
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for compendium-heroicum.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
compendium-heroicum.de
compendium-heroicum.net
d4.sfb948.uni-freiburg.de
heroicum.de
heroicum.net
www.compendium-heroicum.de
www.compendium-heroicum.net
www.heroicum.de
www.heroicum.net
compendium-heroicum.net
d4.sfb948.uni-freiburg.de
heroicum.de
heroicum.net
www.compendium-heroicum.de
www.compendium-heroicum.net
www.heroicum.de
www.heroicum.net
Other certificates including the domain name compendium-heroicum.de
(limited to 100 certificates)
compendium-heroicum.de
compendium-heroicum.de
compendium-heroicum.de
compendium-heroicum.de
compendium-heroicum.de
www.compendium-heroicum.de
www.compendium-heroicum.de
www.compendium-heroicum.de
compendium-heroicum.de
compendium-heroicum.de
compendium-heroicum.de
compendium-heroicum.de
www.compendium-heroicum.de
compendium-heroicum.de
compendium-heroicum.de
compendium-heroicum.de
compendium-heroicum.de
www.compendium-heroicum.de
www.compendium-heroicum.de
www.compendium-heroicum.de
compendium-heroicum.de
compendium-heroicum.de
compendium-heroicum.de
compendium-heroicum.de
www.compendium-heroicum.de
Certificate
The complete raw certificate details for compendium-heroicum.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGvjCCBaagAwIBAgISA5NKKejY+lgUZfuB1WS7gsCRMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA1MTUwOTA0MDBaFw0x NzA4MTMwOTA0MDBaMCExHzAdBgNVBAMTFmNvbXBlbmRpdW0taGVyb2ljdW0uZGUw ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCgllkq15aqmi1mke0zna6n wvp+zoy6zPl44Afe8nf1qmUsxLs4Xw2AXcBsDcjK0ZlPXZLnPoC2qp0SPqSD1wXA bLFfOHrX5PvHjEwcIAmSVGbRNJiU1myGj2AvTGu6C3Av2t426exI+Yw4arITcSRn L4cXfy4tX+OSKcb1P9djFbXGkswmIOcHEp1VfDq/6IWBLxjhEpnNL/CTuzvvuXjE yRH9fH3d2c39qWGwLbJ2xPP4kOOAJkEoyGr7lPiji+43UZ8gKlA5m0d5vjd2EovM coVIZW8l9IBLhn9c9QpzZ0wrm70F+ran9RfjBJAoK8+67U6F22fRtv6VZWiUcekK OFVFbIZ415z1ouWSbPx02M+lNlbhL6umzac/US7LLKPK5TZHmFEPUT6Ts2mWpXcN gHcmikrP0fD9OM7z0OQVQRziMdhA34/8d/pq7frZyBiBPUXRlfGHwt56j89cvFQK xZkv0vTBx4SV9uSJADxPK67Bx05IBY0dPkD624gzyv3GktoUN3UG8G3guJpjYXrD DDm0999nSt2Drgcf7N/H7pGNEjdDlBSd6B7JPwKsjgHMpAS+NrgAZBxnCfVPncQ5 J353s7G5hw+/KXPoDNSE8TadJEih2uYOkv36ajZlZOGwvRlRwkNxPEEcBNDFli6m /Xnc7GJ4f6TVbY+ZJZcacwIDAQABo4ICxTCCAsEwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBTgSg3EUh/kesmeJVa+mjWP6b3+7zAfBgNVHSMEGDAWgBSoSmpjBH3duubR ObemRWXv86jsoTBwBggrBgEFBQcBAQRkMGIwLwYIKwYBBQUHMAGGI2h0dHA6Ly9v Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcvMC8GCCsGAQUFBzAChiNodHRwOi8v Y2VydC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzCBzgYDVR0RBIHGMIHDghZjb21w ZW5kaXVtLWhlcm9pY3VtLmRlghdjb21wZW5kaXVtLWhlcm9pY3VtLm5ldIIZZDQu c2ZiOTQ4LnVuaS1mcmVpYnVyZy5kZYILaGVyb2ljdW0uZGWCDGhlcm9pY3VtLm5l dIIad3d3LmNvbXBlbmRpdW0taGVyb2ljdW0uZGWCG3d3dy5jb21wZW5kaXVtLWhl cm9pY3VtLm5ldIIPd3d3Lmhlcm9pY3VtLmRlghB3d3cuaGVyb2ljdW0ubmV0MIH+ BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGe DIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBS ZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBD ZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5v cmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBAClzU695rWr6zq67RoMQ OXcSPhzLZBiSuYlBY8K7VfrTYgMl4TbNyhqDIcdDHOqtiz2lUCFzN8qnrwJ7y9Cr ygj0lH01/EPqX/XfQlzjqCg4o4F+g0k3irZMzCZUJ2CvIJikUxZ0gsSXFv+ekzed 0MQKpkw2lqiW9IbbmvESE0+Phcec+v3aJ0W+I9SSF22V3kxKyhUh2JXY6usz6y4J zZFuuolftIdkCRmI256R3JmGosrBpQ+haFQA/6qKp2xhzs8tJ/nBK8GXYzelhZAC qc0YUZpNucUzLqMAseQorkbGND/9/iEpxWbR7gKExswQcsUok7TCx2flNv98ZNiQ Vag= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoJZZKteWqpotZpHtM52u p8L6fs6Musz5eOAH3vJ39aplLMS7OF8NgF3AbA3IytGZT12S5z6AtqqdEj6kg9cF wGyxXzh61+T7x4xMHCAJklRm0TSYlNZsho9gL0xrugtwL9reNunsSPmMOGqyE3Ek Zy+HF38uLV/jkinG9T/XYxW1xpLMJiDnBxKdVXw6v+iFgS8Y4RKZzS/wk7s777l4 xMkR/Xx93dnN/alhsC2ydsTz+JDjgCZBKMhq+5T4o4vuN1GfICpQOZtHeb43dhKL zHKFSGVvJfSAS4Z/XPUKc2dMK5u9Bfq2p/UX4wSQKCvPuu1Ohdtn0bb+lWVolHHp CjhVRWyGeNec9aLlkmz8dNjPpTZW4S+rps2nP1EuyyyjyuU2R5hRD1E+k7NplqV3 DYB3JopKz9Hw/TjO89DkFUEc4jHYQN+P/Hf6au362cgYgT1F0ZXxh8Leeo/PXLxU CsWZL9L0wceElfbkiQA8TyuuwcdOSAWNHT5A+tuIM8r9xpLaFDd1BvBt4LiaY2F6 www5tPffZ0rdg64HH+zfx+6RjRI3Q5QUnegeyT8CrI4BzKQEvja4AGQcZwn1T53E OSd+d7OxuYcPvylz6AzUhPE2nSRIodrmDpL9+mo2ZWThsL0ZUcJDcTxBHATQxZYu pv153OxieH+k1W2PmSWXGnMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 311456946211227766656040088713236221968529 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-15 09:04:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-13 09:04:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'compendium-heroicum.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 655139018035184284082666551112743233136814354565972161270644899071753698903681262276385078877591214438452175167805501087062579234473556156444374385395668387989833251786323665856180257243210830760959427227227730994254818727941772460512795609417428580254445060590017663713133974190590297989511242989522590607970521153767545262063495172316607925056626905315911156862306169157461297477660924015983207194776249386560905389870960325817058856375643838361583953137474117104797087846672468068224037727853309348621837900051093458535046077053864731697209650138289970601203848372269418710118596898672138870159513746052666327707681222128427959881761022716009077924086787660670085106436155248419889275547770364561350231771597713799619933415633880108606413502235444924013073318460541897656330283831784072668873116242786825370546345750379869701114289261095042255881684500644050894919888618146242814564167902645584987430195196443115933936123731287785715135260526434705557935082807914249684062964923434535518766280913551296993019341223944752604457325064765590501776564681206033748379216238898972177154505890618969412918333820330810392123651222830225387087620123886043496501484559542258784720729530589625003653179732781408058491313646462544386373130867 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e04a0dc4521fe47ac99e2556be9a358fe9bdfeef . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (198 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'compendium-heroicum.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'compendium-heroicum.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'd4.sfb948.uni-freiburg.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heroicum.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heroicum.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.compendium-heroicum.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.compendium-heroicum.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.heroicum.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.heroicum.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00297353af79ad6afaceaebb4683103977123e1ccb641892b9894163c2bb55fad3620325e136cdca1a8321c7431ceaad8b3da550217337caa7af027bcbd0abca08f4947d35fc43ea5ff5df425ce3a82838a3817e8349378ab64ccc26542760af2098a453167482c49716ff9e93379dd0c40aa64c3696a896f486db9af112134f8f85c79cfafdda2745be23d492176d95de4c4aca1521d895d8eaeb33eb2e09cd916eba895fb48764091988db9e91dc9986a2cac1a50fa1685400ffaa8aa76c61cecf2d27f9c12bc1976337a5859002a9cd18519a4db9c5332ea300b1e428ae46c6343ffdfe2129c566d1ee0284c6cc1072c52893b4c2c767e536ff7c64d89055a8