avis-confidentialite.snc.alpha.canada.ca
Issued by R3
About this certificate
This digital certificate with serial number 03:a7:cb:66:f1:48:5b:02:aa:bb:68:89:a8:b9:e3:b1:e7:ab was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=avis-confidentialite.snc.alpha.canada.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a7:cb:66:f1:48:5b:02:aa:bb:68:89:a8:b9:e3:b1:e7:abSerial Number (int): 318434380862294680353957202968092265801643
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 58:ce:0f:ad:92:08:fb:cd:b7:6b:9f:b5:d5:ce:a5:33:a9:35:d2:5d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 13:c9:0e:73:e4:9e:30:f4:1e:1b:b6:28:c5:2a:26:56:43:f7:9e:96
Fingerprint (sha256): 00:9a:05:8b:52:1f:41:6a:bf:84:43:17:43:a2:82:6d:b0:f5:c4:b5:06:c5:b2:b6:62:da:18:a3:84:23:5f:45
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate avis-confidentialite.snc.alpha.canada.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for avis-confidentialite.snc.alpha.canada.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
avis-confidentialite.snc.alpha.canada.ca
Other certificates including the domain name canada.ca
(limited to 100 certificates)
*.dev.tc.canada.ca
avis-confidentialite.snc.alpha.canada.ca
srv129.services.gc.ca
gac-amc-sso-au-cate.canada.ca
explorer-marche-travail.service.canada.ca
impact.canada.ca
reports.young-canada-works.canada.ca
canadabuys.canada.ca
sni.cloudflaressl.com
cbapps-viya4-dev.service.cloud-nuage.canada.ca
api.aro-nonprd.api-nonprod.service.cloud-nuage.canada.ca
ceres-seres-api-test1.test.cbsa-asfc.cloud-nuage.canada.ca
dev.dam.explore-labour-market.service.canada.ca
*.Canada.ca
energy-information.canada.ca
ide.dev.service.canada.ca
nvmipiis-ihs-qa.g.phac.cloud-nuage.canada.ca
mygcpay-dev.azure.tpsgc-pwgsc.cloud-nuage.canada.ca
canada.ca
feedback-by-page.tbs.alpha.canada.ca
blog.canada.ca
cicp-pcid.dev.cbsa-asfc.cloud-nuage.canada.ca
fs-dev-gcfm.canada.ca
dev-estma-lmtse.canada.ca
numerique.canada.ca
veterans-service-card.canada.ca
health-infobase.canada.ca
veterans-service-card.canada.ca
code.sp.ssc.alpha.canada.ca
uat.ised-isde.canada.ca
x2h-dev.gcfm.canada.ca
*.apps.aro-nonprd.api-nonprod.service.cloud-nuage.canada.ca
ircc-services-dev.canada.ca
esdc-consultations.canada.ca
inspection.gc.ca
*.library-archives.canada.ca
dec.canada.ca
helloweb.ssc-spc.dl-consol.com-dev.m.ent.cloud-nuage.canada.ca
api.notification.alpha.canada.ca
cdts.service.canada.ca
console.dev.openshift.ised-isde.canada.ca
cic.gc.ca
sjc.jeunesse.service.canada.ca
marine-geo.canada.ca
veterans-service-card.canada.ca
XMPPcluster01.video.gc.ca
cat.fsl-bsf.scitech.gc.ca
integration-gcaccounts.canada.ca
srv130.services.gc.ca
design.alpha.canada.ca
www1.canada.ca
covid-19inventory.tbs.alpha.canada.ca
wayfinding.tbs.alpha.canada.ca
jeunesse-canada-travail.canada.ca
beta.canada.ca
sr.canada.ca
ck.ised-isde.canada.ca
SSC-VCSE-15.video.gc.ca
major-projects.canada.ca
do-rb-dev.dev.cbsa-asfc.cloud-nuage.canada.ca
fakecuram.dev.ps-sp.esdc-edsc.canada.ca
code.open.canada.ca
youth.service.cloud-nuage.canada.ca
dev.explore-labour-market.service.canada.ca
canadaservicecorps-corpsdeserviceducanada.canada.ca
sh.api.dev.portfolio1.n.g.phac.cloud-nuage.canada.ca
cfc-swc.gc.ca
nrcan-funding-financement-rncan.canada.ca
numerique.canada.ca
impact.canada.ca
api.explore-labour-market.service.canada.ca
video2.servicecanada.gc.ca
api.osdp-cumulative-effects-stage.canada.ca
preprod-app.neics-nscei.canada.ca
careers-carrieres.cbsa-asfc.cloud-nuage.canada.ca
ised-isde.canada.ca
statistics.alpha.canada.ca
srv130.services.gc.ca
snic77fgl.wpc.edgecastcdn.net
digital.canada.ca
science-libraries.canada.ca
digital.canada.ca
conception.canada.ca
integration-gcaccounts.canada.ca
ceres-seres-api-dev1.dev.cbsa-asfc.cloud-nuage.canada.ca
api.ocp.dev.ised-isde.canada.ca
environmental-maps.canada.ca
jeunesse-canada-travail.canada.ca
devservices.gcfm.canada.ca
dev.ised-isde.canada.ca
ised-isde.canada.ca
sni18924gl.wpc.edgecastcdn.net
*.cbsa-asfc.cloud-nuage.canada.ca
demoapp.mvpdemo.bd-demo.com-dev.m.ent.cloud-nuage.canada.ca
beta.canada.ca
io.canada.ca
pwd.gcfm.canada.ca
pop.ctst.email-courriel.canada.ca
api.explorer-marche-travail.service.canada.ca
rp2-oidc.id.alpha.canada.ca
avis-confidentialite.snc.alpha.canada.ca
srv129.services.gc.ca
gac-amc-sso-au-cate.canada.ca
explorer-marche-travail.service.canada.ca
impact.canada.ca
reports.young-canada-works.canada.ca
canadabuys.canada.ca
sni.cloudflaressl.com
cbapps-viya4-dev.service.cloud-nuage.canada.ca
api.aro-nonprd.api-nonprod.service.cloud-nuage.canada.ca
ceres-seres-api-test1.test.cbsa-asfc.cloud-nuage.canada.ca
dev.dam.explore-labour-market.service.canada.ca
*.Canada.ca
energy-information.canada.ca
ide.dev.service.canada.ca
nvmipiis-ihs-qa.g.phac.cloud-nuage.canada.ca
mygcpay-dev.azure.tpsgc-pwgsc.cloud-nuage.canada.ca
canada.ca
feedback-by-page.tbs.alpha.canada.ca
blog.canada.ca
cicp-pcid.dev.cbsa-asfc.cloud-nuage.canada.ca
fs-dev-gcfm.canada.ca
dev-estma-lmtse.canada.ca
numerique.canada.ca
veterans-service-card.canada.ca
health-infobase.canada.ca
veterans-service-card.canada.ca
code.sp.ssc.alpha.canada.ca
uat.ised-isde.canada.ca
x2h-dev.gcfm.canada.ca
*.apps.aro-nonprd.api-nonprod.service.cloud-nuage.canada.ca
ircc-services-dev.canada.ca
esdc-consultations.canada.ca
inspection.gc.ca
*.library-archives.canada.ca
dec.canada.ca
helloweb.ssc-spc.dl-consol.com-dev.m.ent.cloud-nuage.canada.ca
api.notification.alpha.canada.ca
cdts.service.canada.ca
console.dev.openshift.ised-isde.canada.ca
cic.gc.ca
sjc.jeunesse.service.canada.ca
marine-geo.canada.ca
veterans-service-card.canada.ca
XMPPcluster01.video.gc.ca
cat.fsl-bsf.scitech.gc.ca
integration-gcaccounts.canada.ca
srv130.services.gc.ca
design.alpha.canada.ca
www1.canada.ca
covid-19inventory.tbs.alpha.canada.ca
wayfinding.tbs.alpha.canada.ca
jeunesse-canada-travail.canada.ca
beta.canada.ca
sr.canada.ca
ck.ised-isde.canada.ca
SSC-VCSE-15.video.gc.ca
major-projects.canada.ca
do-rb-dev.dev.cbsa-asfc.cloud-nuage.canada.ca
fakecuram.dev.ps-sp.esdc-edsc.canada.ca
code.open.canada.ca
youth.service.cloud-nuage.canada.ca
dev.explore-labour-market.service.canada.ca
canadaservicecorps-corpsdeserviceducanada.canada.ca
sh.api.dev.portfolio1.n.g.phac.cloud-nuage.canada.ca
cfc-swc.gc.ca
nrcan-funding-financement-rncan.canada.ca
numerique.canada.ca
impact.canada.ca
api.explore-labour-market.service.canada.ca
video2.servicecanada.gc.ca
api.osdp-cumulative-effects-stage.canada.ca
preprod-app.neics-nscei.canada.ca
careers-carrieres.cbsa-asfc.cloud-nuage.canada.ca
ised-isde.canada.ca
statistics.alpha.canada.ca
srv130.services.gc.ca
snic77fgl.wpc.edgecastcdn.net
digital.canada.ca
science-libraries.canada.ca
digital.canada.ca
conception.canada.ca
integration-gcaccounts.canada.ca
ceres-seres-api-dev1.dev.cbsa-asfc.cloud-nuage.canada.ca
api.ocp.dev.ised-isde.canada.ca
environmental-maps.canada.ca
jeunesse-canada-travail.canada.ca
devservices.gcfm.canada.ca
dev.ised-isde.canada.ca
ised-isde.canada.ca
sni18924gl.wpc.edgecastcdn.net
*.cbsa-asfc.cloud-nuage.canada.ca
demoapp.mvpdemo.bd-demo.com-dev.m.ent.cloud-nuage.canada.ca
beta.canada.ca
io.canada.ca
pwd.gcfm.canada.ca
pop.ctst.email-courriel.canada.ca
api.explorer-marche-travail.service.canada.ca
rp2-oidc.id.alpha.canada.ca
Certificate
The complete raw certificate details for avis-confidentialite.snc.alpha.canada.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgISA6fLZvFIWwKqu2iJqLnjseerMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMjA1MjExNjE1MjZaFw0yMjA4MTkxNjE1MjVaMDMxMTAvBgNVBAMT KGF2aXMtY29uZmlkZW50aWFsaXRlLnNuYy5hbHBoYS5jYW5hZGEuY2EwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3Xhr5QDR2XyvhEv6cTtHkiV4fIK3e fP15PatZb4OaoXLCdhhWCfoVKegzebQsQ5OadWjGxjIuXuRhG3ZPUzhxgwnJjlXi NOJOEYEZFKi5BAhGpoIc9vX6HmBeRhmRuqT5yg3SvjuEXSstgHVMPtakbT+y9MjF U/vSuZQ+QoRZ0rStD4nsGZ68w4MnL+hfEmGctEiflBkWh7mw87wsgmTCyPXZByEL ncmRx2vN2ah16JCWDTOiffmV0Br+zhY1e6DlekuInxYtsj7v0q7/bB0Fi52SQq5t qemp3L/8qNeeZnrIWSrcgkMAIaXGxJbwz7bmbQApzUrUY1ybEG64hrHfAgMBAAGj ggJjMIICXzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFjOD62SCPvNt2uftdXOpTOp NdJdMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEB BEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUF BzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMDMGA1UdEQQsMCqCKGF2aXMtY29u ZmlkZW50aWFsaXRlLnNuYy5hbHBoYS5jYW5hZGEuY2EwTAYDVR0gBEUwQzAIBgZn gQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5s ZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgApeb7wnjk5 IfBWc59jpXflvld9nGAK+PlNXSZcJV3HhAAAAYDnneT6AAAEAwBHMEUCIEQvN4Wg RybisvKlmDdp9qDmbz9o10uosnNV4wNpqpB1AiEAkfXUB+GO4mplBHACVgO9Rx0R 3RhWcSp+e/f8DW0TEM0AdgDfpV6raIJPH2yt7rhfTj5a6s2iEqRqXo47EsAgRFwq cwAAAYDnneZ8AAAEAwBHMEUCIQDfaazYc9fi4yZO7lO4FouQeXdZy53JPh4l0gwr v52BmgIgKp4KisoEBB8Z5D6JA3VJvFz8hOIezn5l2+Czt8XVNZ0wDQYJKoZIhvcN AQELBQADggEBAHxHKyVYMx59+xDszF2EEgIsBu2JjlmunXEShPB8ZA2LpIK8fAeD L7TaZXqmBRDPDQ+p1IPqaONvWlJiXt04KfVE07Q29nn9JifRuaNZKNVUHrybudLq vAoL7qtQwvaiMGehZa7o1viGtzYo45ZZfmKT5RvLYXw+AHsz3nJeVweMj6O98QI3 iPEzJTr32DxNP/+j5SPi5oS6YntN6DpoNYHJhz2l/+TtXa2qnXPgwBRQ4v7NnJ4N gr3pk2t73O5raXeWVJyLmJeSnrkoEoufeHl89mdUDPoCUreoTGST1HtEEJAoe0oS zhesohNL4zusKkZYF4bNT6uSyVwJM8Q6LVw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA914a+UA0dl8r4RL+nE7R 5IleHyCt3nz9eT2rWW+DmqFywnYYVgn6FSnoM3m0LEOTmnVoxsYyLl7kYRt2T1M4 cYMJyY5V4jTiThGBGRSouQQIRqaCHPb1+h5gXkYZkbqk+coN0r47hF0rLYB1TD7W pG0/svTIxVP70rmUPkKEWdK0rQ+J7BmevMODJy/oXxJhnLRIn5QZFoe5sPO8LIJk wsj12QchC53JkcdrzdmodeiQlg0zon35ldAa/s4WNXug5XpLiJ8WLbI+79Ku/2wd BYudkkKubanpqdy//KjXnmZ6yFkq3IJDACGlxsSW8M+25m0AKc1K1GNcmxBuuIax 3wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 318434380862294680353957202968092265801643 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-21 16:15:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-08-19 16:15:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'avis-confidentialite.snc.alpha.canada.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31227266412016611063089362675054186692124832361206329017371052941019786625606428019215785178478505599192297814023148321872128168290996846668355870023941683755915577562573896098580887499010409143992351216301665313007843926221700507053324829071216588697866534888886693130308143159438654410051851040607793797209897895570882701108114381503709118653087837976530282382814160531692376416013634205286316997492025053616001629811974193913693203569857076614460424593369208432425295660401673269239251165884020680536654288678001280256718469135227172287196289819500918622433165212334803753699661488289598047134669327902022721515999 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 58ce0fad9208fbcdb76b9fb5d5cea533a935d25d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avis-confidentialite.snc.alpha.canada.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076002979bef09e393921f056739f63a577e5be577d9c600af8f94d5d265c255dc78400000180e79de4fa00000403004730450220442f3785a04726e2b2f2a5983769f6a0e66f3f68d74ba8b27355e30369aa907502210091f5d407e18ee26a650470025603bd471d11dd1856712a7e7bf7fc0d6d1310cd007600dfa55eab68824f1f6cadeeb85f4e3e5aeacda212a46a5e8e3b12c020445c2a7300000180e79de67c0000040300473045022100df69acd873d7e2e3264eee53b8168b90797759cb9dc93e1e25d20c2bbf9d819a02202a9e0a8aca04041f19e43e89037549bc5cfc84e21ece7e65dbe0b3b7c5d5359d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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