ssl.smugmug.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:e6:4a:31:7f:da:6d:4d:f0:5e:89:92:cf:5a:d7:c4:7f:98 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ssl.smugmug.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e6:4a:31:7f:da:6d:4d:f0:5e:89:92:cf:5a:d7:c4:7f:98Serial Number (int): 339700422074502325697938807354678919331736
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: fd:29:47:49:73:45:77:b2:a5:78:ba:0f:b4:d9:b5:f2:74:be:44:c8
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): bc:3d:44:58:2d:fe:0d:ea:86:93:f1:6a:4d:e3:bc:ff:04:b5:62:72
Fingerprint (sha256): 00:56:a8:da:42:1b:25:57:13:88:d0:f3:4e:6e:81:61:a4:1d:71:f0:72:e5:b6:ac:bb:24:30:77:d2:74:35:67
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate ssl.smugmug.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ssl.smugmug.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ssl.smugmug.com
www.davidaparker.com
www.davidaparker.com
Other certificates including the domain name smugmug.com
(limited to 100 certificates)
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
statuspage.io
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
statuspage.io
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
ssl.smugmug.com
Certificate
The complete raw certificate details for ssl.smugmug.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGazCCBVOgAwIBAgISA+ZKMX/abU3wXomSz1rXxH+YMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMzAxNTIyMDJaFw0y MDA0MjkxNTIyMDJaMBoxGDAWBgNVBAMTD3NzbC5zbXVnbXVnLmNvbTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAKEnMn8hjNd0tKcf1R7WzlhGSpfCZVOj TWn9HM2+K5b0PO76YBU8Na8cDxOl/sQRhNZe5VcmPPlAKFX4qNpUfv7iZPmQD8mo TQq+eO0ZSPqz3d9uGSskJ64pjcDSw125cFyTfOyNNUzS3fM+2Ua+27uAAQtIOHGw b1uR9O5ejPeJeOr5r9fNWucgRegRyHkT11h0yGZJ4lxgcR5t4XrEbwGYDd7qLbB0 Eycqu6EyIb7jwYjyVgqjdQ4kMNBw2+mBe08GP3hoEJV6bLkYtIkxi60z1G4fatZM filzhe+sD6YxmSI2x2u+jqZmGnBvnAD34glOvN8LNxKWNBqn4gEg2eXwtgKu7rt8 XPTWmOoeBUN8stRM2lZoDRDGIH1QGXj5UPXgIqmxeZ6aKNk+9nj7PmHsPhWdDjW0 +V/6WR3gtBtCaiJkUCbA1n4fE8Ix6wKNIebs5XINeo/HK6NdinzPEv3WKGO6Y0rw tz3N/9cuYrRrxRI+jC7NDLi2bS7NQlYYw9Gw/b24P22+Mey5QcOzx4maDBUGngxb HlnC1Mh+NAooc9W4YDcpU3GHiMmvgJa4SMKM44+yhE+Yo2rtWrgR0GqdbuaDfzuz jAQsyxFWFhq5jHUxhRifeNLH8B2UyGhJOzjjE9W93jIb6XuGybgQoyEib6UhMfJl P0+KCUbkZA2/AgMBAAGjggJ5MIICdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFP0p R0lzRXeypXi6D7TZtfJ0vkTIMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wMAYDVR0RBCkwJ4IPc3NsLnNtdWdtdWcuY29t ghR3d3cuZGF2aWRhcGFya2VyLmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3Bgsr BgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0 Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2AF6nc/nfVsDntTZIfdBJ4DJ6 kZoMhKESEoQYdZaBcUVYAAABb/dCbAIAAAQDAEcwRQIgWXTuyTSjnYmgmpCc7fNl qq6s/OU8qMAuDHCpSplh6esCIQCMJ3pe1nE+yzodv3h2jBOdQcEgqWj3XLBa5A/q EQh2ZgB1ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJUy3vi5BeAAABb/dCa/AA AAQDAEYwRAIgMqAszW9PCdeJYK0K8EOq9Cl+0fpQhRAmdHsjRDjtBDgCIGbiIpxu hQ7JfErnptjKyDTzwaqDtGCzXbKz8oFXBq0pMA0GCSqGSIb3DQEBCwUAA4IBAQCQ g+hoW20vzBiYPQfWRWx43HbgaC9kXRM8lu3aER49wt7xwiIofDH3Mt0m9Du65ta5 RYLpaVTFBL9/V9YOkafvo6ZNDs3pTsN4JDsYmjLJy/8Ej0Mqw1W6CfxJWILSCwDj hpqLVnyKwpPiQbDhrvsN/7o/YgxyNbAaO11o7Gtubo1ypL4T8WYnDwiuYjtS8nQp bTPbSwm+OmbomoPwQHCJzm6jEwDVgm72zqTKRIpaMxTPj/EfReM6ta1pUddf4c/F HbK2V0bE0xr/aU7jcgnPWt0kZUJnEFfA+jGknNA5DPUYaC5/susu3wjSub9L7YIo ItqNGy7gJH68eHDYkB1W -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoScyfyGM13S0px/VHtbO WEZKl8JlU6NNaf0czb4rlvQ87vpgFTw1rxwPE6X+xBGE1l7lVyY8+UAoVfio2lR+ /uJk+ZAPyahNCr547RlI+rPd324ZKyQnrimNwNLDXblwXJN87I01TNLd8z7ZRr7b u4ABC0g4cbBvW5H07l6M94l46vmv181a5yBF6BHIeRPXWHTIZkniXGBxHm3hesRv AZgN3uotsHQTJyq7oTIhvuPBiPJWCqN1DiQw0HDb6YF7TwY/eGgQlXpsuRi0iTGL rTPUbh9q1kx+KXOF76wPpjGZIjbHa76OpmYacG+cAPfiCU683ws3EpY0GqfiASDZ 5fC2Aq7uu3xc9NaY6h4FQ3yy1EzaVmgNEMYgfVAZePlQ9eAiqbF5npoo2T72ePs+ Yew+FZ0ONbT5X/pZHeC0G0JqImRQJsDWfh8TwjHrAo0h5uzlcg16j8cro12KfM8S /dYoY7pjSvC3Pc3/1y5itGvFEj6MLs0MuLZtLs1CVhjD0bD9vbg/bb4x7LlBw7PH iZoMFQaeDFseWcLUyH40Cihz1bhgNylTcYeIya+AlrhIwozjj7KET5ijau1auBHQ ap1u5oN/O7OMBCzLEVYWGrmMdTGFGJ940sfwHZTIaEk7OOMT1b3eMhvpe4bJuBCj ISJvpSEx8mU/T4oJRuRkDb8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 339700422074502325697938807354678919331736 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-30 15:22:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-29 15:22:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ssl.smugmug.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 657447346662558655240882292243218302555388701248339319923749659566030788427618090074409310506897487348377256755407808240993411945207321577985594181816853338299665523243799729291964779424897811174396121279516127765177049094829791429055272661364754890586040062758231669778561458408276712776518179055660097447673896156370937169280819277979383944843691876547101898167368473354950677905557546834905787968739670890724709437308810516977253827547847726512005443754763855844869014907488147208855201437079024753049377059291979694423091148723848372421666982023428798683238069340053042024962463249944937024998470409035639668407561552081330451262399356638525420493929443810462683063119571295380847363573340366592424667601507962911823817891627548171021206744886380189333054007438615493295137731198958076389117639666277691567972611389066661843643175322607902342017080488120062407095766402760391321522170515652794793588901292365285345446750669688706069752478029017975893403269841716051491538219282000268060549518910551479998350810595401077255192445066701952886447387568221735291079853534311521245388302502177288078632148960575855126669122313971215187395368480793865727233161543697242816396850058262990163051595083261805259490236658333657967274233279 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fd294749734577b2a578ba0fb4d9b5f274be44c8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (41 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ssl.smugmug.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.davidaparker.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016ff7426c02000004030047304502205974eec934a39d89a09a909cedf365aaaeacfce53ca8c02e0c70a94a9961e9eb0221008c277a5ed6713ecb3a1dbf78768c139d41c120a968f75cb05ae40fea11087666007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016ff7426bf00000040300463044022032a02ccd6f4f09d78960ad0af043aaf4297ed1fa50851026747b234438ed0438022066e2229c6e850ec97c4ae7a6d8cac834f3c1aa83b460b35db2b3f2815706ad29 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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