pub-xtfweb2-prd.cdlib.org
Issued by R3
About this certificate
This digital certificate with serial number 03:4e:45:95:7d:a3:0d:ce:25:9d:c8:21:38:e1:f6:89:7d:63 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pub-xtfweb2-prd.cdlib.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:4e:45:95:7d:a3:0d:ce:25:9d:c8:21:38:e1:f6:89:7d:63Serial Number (int): 287971375347274684442330459294820035296611
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ba:5f:84:67:b3:53:5d:8c:e2:69:8c:f6:3c:6c:ce:63:ba:9e:1f:ee
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f9:93:f3:37:6d:df:bc:59:9b:e0:82:a8:48:6c:7c:9f:21:40:2f:30
Fingerprint (sha256): 00:39:65:cf:0e:a3:8e:b9:00:51:5a:d0:97:a7:42:77:4e:3c:27:9e:2a:ca:af:3b:12:cb:5e:02:17:6d:01:37
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate pub-xtfweb2-prd.cdlib.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pub-xtfweb2-prd.cdlib.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pub-xtfweb2-prd.cdlib.org
xtf.cdlib.org
xtf.cdlib.org
Other certificates including the domain name cdlib.org
(limited to 100 certificates)
pub-xtfweb2-prd.cdlib.org
uc3-mrtui03x2-prd.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
xtf.cdlib.org
datadryad.org
5758048710688768-fe3.pantheonsite.io
www.cdlib.org
5648554290839552-fe1.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
hg.cdlib.org
aspace.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
uc3-ingest03x2-prd.cdlib.org
registry-stg.cdlib.org
uc3-ingest01x2-stg.cdlib.org
5704837555552256-fe2.pantheonsite.io
hg.cdlib.org
5704837555552256-fe2.pantheonsite.io
registry-dev.cdlib.org
5758048710688768-fe3.pantheonsite.io
cdlib.org
5758048710688768-fe3.pantheonsite.io
registry.cdlib.org
5704837555552256-fe2.pantheonsite.io
nuxeo.cdlib.org
5648554290839552-fe1.pantheonsite.io
massdig.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
pub-xtfweb2-prd.cdlib.org
5758048710688768-fe3.pantheonsite.io
uc3-ingest01x2-prd.cdlib.org
5758048710688768-fe3.pantheonsite.io
analytics.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
cdl-aws-nagios.cdlib.org
5758048710688768-fe3.pantheonsite.io
help.oac.cdlib.org
datamirror.org
5758048710688768-fe3.pantheonsite.io
uc3-wasredirectx2-prd.cdlib.org
5653164804014080-fe1.pantheonsite.io
uc3-dryadsolr-stg.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
oac.cdlib.org
dash.cdlib.org
5758048710688768-fe3.pantheonsite.io
cdlib.org
fdus-31.freshdesk.com
help.oac.cdlib.org
5758048710688768-fe3.pantheonsite.io
ftps-stg.cdlib.org
5758048710688768-fe3.pantheonsite.io
5704837555552256-fe2.pantheonsite.io
agua-stage.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
d2d-pid2-prd.cdlib.org
redmine.cdlib.org
voro.cdlib.org
uc3-dryaduix2-stg-2c.cdlib.org
5758048710688768-fe3.pantheonsite.io
mylibrary.cdlib.org
5758048710688768-fe3.pantheonsite.io
5648554290839552-fe1.pantheonsite.io
5653164804014080-fe1.pantheonsite.io
5704837555552256-fe2.pantheonsite.io
oac.cdlib.org
libraries.universityofcalifornia.edu
melvyl.cdlib.org
uc3-ezid-ui-prd.cdlib.org
5653164804014080-fe1.pantheonsite.io
help.oac.cdlib.org
uc3-dryad-stg.cdlib.org
help.oac.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
tls.automattic.com
5648554290839552-fe1.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
uc3-ingest02x2-stg.cdlib.org
5758048710688768-fe3.pantheonsite.io
uc3-dryaduix2-dev.cdlib.org
5648554290839552-fe1.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
help.oac.cdlib.org
5758048710688768-fe3.pantheonsite.io
uc3-mrtui03x2-prd.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
xtf.cdlib.org
datadryad.org
5758048710688768-fe3.pantheonsite.io
www.cdlib.org
5648554290839552-fe1.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
hg.cdlib.org
aspace.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
uc3-ingest03x2-prd.cdlib.org
registry-stg.cdlib.org
uc3-ingest01x2-stg.cdlib.org
5704837555552256-fe2.pantheonsite.io
hg.cdlib.org
5704837555552256-fe2.pantheonsite.io
registry-dev.cdlib.org
5758048710688768-fe3.pantheonsite.io
cdlib.org
5758048710688768-fe3.pantheonsite.io
registry.cdlib.org
5704837555552256-fe2.pantheonsite.io
nuxeo.cdlib.org
5648554290839552-fe1.pantheonsite.io
massdig.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
pub-xtfweb2-prd.cdlib.org
5758048710688768-fe3.pantheonsite.io
uc3-ingest01x2-prd.cdlib.org
5758048710688768-fe3.pantheonsite.io
analytics.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
cdl-aws-nagios.cdlib.org
5758048710688768-fe3.pantheonsite.io
help.oac.cdlib.org
datamirror.org
5758048710688768-fe3.pantheonsite.io
uc3-wasredirectx2-prd.cdlib.org
5653164804014080-fe1.pantheonsite.io
uc3-dryadsolr-stg.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
oac.cdlib.org
dash.cdlib.org
5758048710688768-fe3.pantheonsite.io
cdlib.org
fdus-31.freshdesk.com
help.oac.cdlib.org
5758048710688768-fe3.pantheonsite.io
ftps-stg.cdlib.org
5758048710688768-fe3.pantheonsite.io
5704837555552256-fe2.pantheonsite.io
agua-stage.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
d2d-pid2-prd.cdlib.org
redmine.cdlib.org
voro.cdlib.org
uc3-dryaduix2-stg-2c.cdlib.org
5758048710688768-fe3.pantheonsite.io
mylibrary.cdlib.org
5758048710688768-fe3.pantheonsite.io
5648554290839552-fe1.pantheonsite.io
5653164804014080-fe1.pantheonsite.io
5704837555552256-fe2.pantheonsite.io
oac.cdlib.org
libraries.universityofcalifornia.edu
melvyl.cdlib.org
uc3-ezid-ui-prd.cdlib.org
5653164804014080-fe1.pantheonsite.io
help.oac.cdlib.org
uc3-dryad-stg.cdlib.org
help.oac.cdlib.org
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
tls.automattic.com
5648554290839552-fe1.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
uc3-ingest02x2-stg.cdlib.org
5758048710688768-fe3.pantheonsite.io
uc3-dryaduix2-dev.cdlib.org
5648554290839552-fe1.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
5758048710688768-fe3.pantheonsite.io
help.oac.cdlib.org
5758048710688768-fe3.pantheonsite.io
Certificate
The complete raw certificate details for pub-xtfweb2-prd.cdlib.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISA05FlX2jDc4lncghOOH2iX1jMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMjIxOTA1NDZaFw0yNDA1MjIxOTA1NDVaMCQxIjAgBgNVBAMT GXB1Yi14dGZ3ZWIyLXByZC5jZGxpYi5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxF+NOWx9o4/k7RHzxhGl4a2J67jb7gLIuZeJzQiFQlYwHzRyz Ul+wRfKZfDfYjitqCbzTpw4zOcuPED2PQiE3WDuPfrzR3lODFO8A9Umd/85Nw3gZ LiZ4dBUaUD2AUPphslZQDT2UVC0dzEjiKIa48a80l/XmqCQwmJADITmX/se8bXRW ZNmlun3wsL+G4o3gam1OXmuYw1FcUx5WpjonYAX5+/sE4OkDse7zS8NoSQdNA1pE baxl0XQ8E7fb5raAJbK309OSWOe+Q9fXHVUhVttPVJZ864h4LPrZcYhqs3CqgJRZ fyb2ENWKEoyly8l3H504e/rfioO5iOHKl3ZLAgMBAAGjggIqMIICJjAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFLpfhGezU12M4mmM9jxszmO6nh/uMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMDMGA1UdEQQsMCqCGXB1Yi14dGZ3ZWIyLXByZC5jZGxpYi5v cmeCDXh0Zi5jZGxpYi5vcmcwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEE AdZ5AgQCBIH1BIHyAPAAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiE cwAAAY3SbJB1AAAEAwBHMEUCIQC33FexTYUm35D1MKamkKQIXH6nxut2vnHN5ukJ 7CkKCgIgMMiLrGM0sJeSy5DEY12mkwhARXTolntfmJAZlAKsqZgAdgB2/4g/Crb7 lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAY3SbJVqAAAEAwBHMEUCIHgVSqTt Qu6JBS7Dcq93yZDXG+ywy7DSBslYJKT91GpeAiEAtagYlw0XDctI/eTAVlQujsGu GhJfEbeKasMBkTVw21wwDQYJKoZIhvcNAQELBQADggEBAFuq9WyOqh0RoYJM/f2u VgXJV9kUu190pzUcyXywBUqBsbPvXFHuZjCCbSKfsf5AhzBJ2oUnRMRTd2PxcCrL PPQkeIAix+RjqpvqQoJNjhZT7uV+Maq3yC7N5EQ2JkdoobZwB0Ked6FM2sAVfnBJ rANyV8Re9i8j1VtDwTh3dqsKli3DTZBb0QBu5Eo7STsZ/Dp/Z0v2CbWs7bkfUTyj yowD+CbcM+tZO/ua4sVbbsewpEeKli2hTdgeemi9nPGsU9LMerJ3O93DLcSEFQlD 5KgBnUWwQKKxhQTXK/xHF9Rj31ZE9mUcDdlux7p8H3L56tbuey6ldLd14u4Rm1p9 0Lg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRfjTlsfaOP5O0R88YRp eGtieu42+4CyLmXic0IhUJWMB80cs1JfsEXymXw32I4ragm806cOMznLjxA9j0Ih N1g7j3680d5TgxTvAPVJnf/OTcN4GS4meHQVGlA9gFD6YbJWUA09lFQtHcxI4iiG uPGvNJf15qgkMJiQAyE5l/7HvG10VmTZpbp98LC/huKN4GptTl5rmMNRXFMeVqY6 J2AF+fv7BODpA7Hu80vDaEkHTQNaRG2sZdF0PBO32+a2gCWyt9PTkljnvkPX1x1V IVbbT1SWfOuIeCz62XGIarNwqoCUWX8m9hDVihKMpcvJdx+dOHv634qDuYjhypd2 SwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 287971375347274684442330459294820035296611 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-22 19:05:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-22 19:05:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pub-xtfweb2-prd.cdlib.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22355959548597257512854316573478479940305401129874487324085922318469726080880536310527560212998104601330453920555566826781160284973096210117240587038061570643745488122208387504021867393027589489099087251303686157329228547285994597856903960720629337561458916865239749599218152719994829771900998562396448376952663331055805044514082837400976675710027049594652189672005757832064590965741977993141741560831832938921171040664806808097105174974423217020053553455981337377516748305065140689474111378279712893005472450187557562462142831247342719068625984290796488082420437534748883373297062174252395955167502282469273436124747 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ba5f8467b3535d8ce2698cf63c6cce63ba9e1fee . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pub-xtfweb2-prd.cdlib.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xtf.cdlib.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018dd26c90750000040300473045022100b7dc57b14d8526df90f530a6a690a4085c7ea7c6eb76be71cde6e909ec290a0a022030c88bac6334b09792cb90c4635da69308404574e8967b5f9890199402aca99800760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018dd26c956a0000040300473045022078154aa4ed42ee89052ec372af77c990d71becb0cbb0d206c95824a4fdd46a5e022100b5a818970d170dcb48fde4c056542e8ec1ae1a125f11b78a6ac301913570db5c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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