roylab.discovery.wisc.edu
Issued by R3
About this certificate
This digital certificate with serial number 03:50:1d:a1:0e:c5:c9:71:f5:52:15:84:fc:fa:7e:89:0f:26 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=roylab.discovery.wisc.edu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:50:1d:a1:0e:c5:c9:71:f5:52:15:84:fc:fa:7e:89:0f:26Serial Number (int): 288598831020251830405023210129328454569766
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 7a:e5:8c:b5:be:c6:ba:d6:bd:7e:38:e9:2a:af:df:75:e9:2b:e7:67
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 2d:d2:b6:25:c5:2e:79:86:a4:b2:33:af:40:84:61:12:43:87:e2:65
Fingerprint (sha256): 00:a1:02:1f:1c:99:3a:0c:a0:a1:3b:26:5c:de:eb:e9:8a:d3:a1:44:3d:68:90:0f:c8:d2:2d:83:8b:a7:97:a9
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate roylab.discovery.wisc.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for roylab.discovery.wisc.edu
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
roylab.discovery.wisc.edu
Other certificates including the domain name wisc.edu
(limited to 100 certificates)
biologymajor.wisc.edu
www.wolmanlab.zoology.wisc.edu
ipib.wisc.edu
my.research.wisc.edu
hytalestatus.io
panther.engr.wisc.edu
idbee.ece.wisc.edu
werling.genetics.wisc.edu
wyso.music.wisc.edu
training.uwpd.wisc.edu
resources.recsports.wisc.edu
win2.dwht.doit.wisc.edu
ponto.discovery.wisc.edu
fluidmodules.engr.wisc.edu
s3.drive.wisc.edu
curbmag.com
test.fakesite.wisc.edu
www.net.wisc.edu
wwwtest.payseur.genetics.wisc.edu
instruction.bact.wisc.edu
hr.wisc.edu
wwwtest.paris.soc.wisc.edu
hipaa.wisc.edu
ourwisconsin.students.wisc.edu
artsticketing.wisc.edu
csd.wisc.edu
geoscience.wisc.edu
learningstore.extension.wisc.edu
animalresearch.wisc.edu
midus2-project5.ssc.wisc.edu
browlab.bmolchem.wisc.edu
cctaplogin.occfr.wisc.edu
paleobiodb.org
ncl.labs.wisc.edu
zendeskauth.medicine.wisc.edu
servercertificates.wisc.edu
aheadd.waisman.wisc.edu
louie.doit.wisc.edu
accessit.urp.wisc.edu
alps.cfli.wisc.edu
theatre.wisc.edu
hps.wisc.edu
volta.fammed.wisc.edu
parenthetical.wisc.edu
allofus.wisc.edu
roylab.discovery.wisc.edu
smnad.philosophy.wisc.edu
sustainability.wisc.edu
you.uhs.wisc.edu
mail.aims.wisc.edu
dc-1.neurosurgery.wisc.edu
test.udp.wisc.edu
cclab.neuro.wisc.edu
graphics.apl.wisc.edu
news.wisc.edu
webhosting.doit.wisc.edu
www.music.wisc.edu
cbitp.chem.wisc.edu
t32database.wisc.edu
franck.engr.wisc.edu
uhs.wisc.edu
deco-web.wipac.wisc.edu
wwwtest.authoring.learnuw.wisc.edu
spock.fammed.wisc.edu
helpnow.uwhealth.org
international.engr.wisc.edu
staff.ohr.wisc.edu
prod.uhs.wisc.edu
wwwtest.uwpolice.wisc.edu
wiser.wisc.edu
commarts.wisc.edu
trial.dwh.doit.wisc.edu
admissions.bus.wisc.edu
ericshusta.che.wisc.edu
idp.adtest.wisc.edu
asm.uwsc.wisc.edu
clipsheet.uc.wisc.edu
researchguides.ebling.library.wisc.edu
cvrc.wisc.edu
ehr.primate.wisc.edu
hittinger.genetics.wisc.edu
epw.polisci.wisc.edu
google.wisc.edu
automation-identity-a.cci.wisc.edu
weather.wisc.edu
textilecollection.wisc.edu
rdweb.athletics.wisc.edu
behavior.polisci.wisc.edu
npp.wisc.edu
mask14.classy.org
galipeau.medicine.wisc.edu
virus.che.wisc.edu
smrs.biostat.wisc.edu
ma.ece.wisc.edu
airwatch.ortho.wisc.edu
evm.doit.wisc.edu
testing.doit.wisc.edu
media.wcwpds.wisc.edu
medmicro.wisc.edu
advising.continuingstudies.wisc.edu
www.wolmanlab.zoology.wisc.edu
ipib.wisc.edu
my.research.wisc.edu
hytalestatus.io
panther.engr.wisc.edu
idbee.ece.wisc.edu
werling.genetics.wisc.edu
wyso.music.wisc.edu
training.uwpd.wisc.edu
resources.recsports.wisc.edu
win2.dwht.doit.wisc.edu
ponto.discovery.wisc.edu
fluidmodules.engr.wisc.edu
s3.drive.wisc.edu
curbmag.com
test.fakesite.wisc.edu
www.net.wisc.edu
wwwtest.payseur.genetics.wisc.edu
instruction.bact.wisc.edu
hr.wisc.edu
wwwtest.paris.soc.wisc.edu
hipaa.wisc.edu
ourwisconsin.students.wisc.edu
artsticketing.wisc.edu
csd.wisc.edu
geoscience.wisc.edu
learningstore.extension.wisc.edu
animalresearch.wisc.edu
midus2-project5.ssc.wisc.edu
browlab.bmolchem.wisc.edu
cctaplogin.occfr.wisc.edu
paleobiodb.org
ncl.labs.wisc.edu
zendeskauth.medicine.wisc.edu
servercertificates.wisc.edu
aheadd.waisman.wisc.edu
louie.doit.wisc.edu
accessit.urp.wisc.edu
alps.cfli.wisc.edu
theatre.wisc.edu
hps.wisc.edu
volta.fammed.wisc.edu
parenthetical.wisc.edu
allofus.wisc.edu
roylab.discovery.wisc.edu
smnad.philosophy.wisc.edu
sustainability.wisc.edu
you.uhs.wisc.edu
mail.aims.wisc.edu
dc-1.neurosurgery.wisc.edu
test.udp.wisc.edu
cclab.neuro.wisc.edu
graphics.apl.wisc.edu
news.wisc.edu
webhosting.doit.wisc.edu
www.music.wisc.edu
cbitp.chem.wisc.edu
t32database.wisc.edu
franck.engr.wisc.edu
uhs.wisc.edu
deco-web.wipac.wisc.edu
wwwtest.authoring.learnuw.wisc.edu
spock.fammed.wisc.edu
helpnow.uwhealth.org
international.engr.wisc.edu
staff.ohr.wisc.edu
prod.uhs.wisc.edu
wwwtest.uwpolice.wisc.edu
wiser.wisc.edu
commarts.wisc.edu
trial.dwh.doit.wisc.edu
admissions.bus.wisc.edu
ericshusta.che.wisc.edu
idp.adtest.wisc.edu
asm.uwsc.wisc.edu
clipsheet.uc.wisc.edu
researchguides.ebling.library.wisc.edu
cvrc.wisc.edu
ehr.primate.wisc.edu
hittinger.genetics.wisc.edu
epw.polisci.wisc.edu
google.wisc.edu
automation-identity-a.cci.wisc.edu
weather.wisc.edu
textilecollection.wisc.edu
rdweb.athletics.wisc.edu
behavior.polisci.wisc.edu
npp.wisc.edu
mask14.classy.org
galipeau.medicine.wisc.edu
virus.che.wisc.edu
smrs.biostat.wisc.edu
ma.ece.wisc.edu
airwatch.ortho.wisc.edu
evm.doit.wisc.edu
testing.doit.wisc.edu
media.wcwpds.wisc.edu
medmicro.wisc.edu
advising.continuingstudies.wisc.edu
Certificate
The complete raw certificate details for roylab.discovery.wisc.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/zCCBOegAwIBAgISA1AdoQ7FyXH1UhWE/Pp+iQ8mMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjgwNTIzMDhaFw0yNDAyMjYwNTIzMDdaMCQxIjAgBgNVBAMT GXJveWxhYi5kaXNjb3Zlcnkud2lzYy5lZHUwggIiMA0GCSqGSIb3DQEBAQUAA4IC DwAwggIKAoICAQCt09yuqZzbFy4r0x2P4swCzMCKh4WGxcelbmVpxGbqnxhj/FLE gydRC+eeaqX7SoYYgk1l35yZ5CE5dKXn9gj6Uz498dKfhV3EB3gF3DybDIsJB54M Y3PcpPZN9w7uJKSaeaZVqOhpn6P/n2IXPs12EgLlnnJ9gU5eCQzYKm9d6OKWGVs9 75Q/+4x09iK+7V3wXD/3OJa15KKCaohwoKMX6izSy6IkAXm0xY8ugH2d9xaXRgx+ tYTCLHW+n0bZOQwCVhEnA+i+G2lQq7ejpIqyUklnjanngyPYP2aNHanf/kYKvYpQ Oqg9zTi01jqzAfCCNIFD3xfnnFncSAxZy+Njg+hMB0FxHns7hJ8N+XNcHlbo/3+/ BBYWvxxHogXQCc7oF4C9iEsbBIIOig4AB/pH3RdvLmUjA08iYxYjmNC8I9fHzINs sPXI+oUJYdfgXpG1QPhJvoqOEURTWPOIJSS15280gOme7OZLIvXzCUdS5CV7ACeQ Iyi2mkdZy9zBUcLLdio3hbhUAWrNIhURVt02ItSbWcvFfMq3TkxFXvoLwPpDbU7i ZtVqsL2PVsnceH5fN2GgyRFmotgq8lPM+W3suu1aLzRnopxQcly/eekL/5aX67Uc qoiUONpIY1QjPb8uPUT2O+/CZkreP6+oz0Y+okyF+zc+3zKa4j6JZ6auMQIDAQAB o4ICGzCCAhcwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBR65Yy1vsa61r1+OOkqr991 6SvnZzAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcB AQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEF BQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAkBgNVHREEHTAbghlyb3lsYWIu ZGlzY292ZXJ5Lndpc2MuZWR1MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYB BAHWeQIEAgSB9QSB8gDwAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznY hHMAAAGMFJiB2gAABAMASDBGAiEAzzTae7LVbAFSTLR2KU4BqW+LQ8k7MTTVY99r PAjhOEYCIQCSmlRQVj1oQ6kVBolhrqqxhj0vdWne1rAw5gE7R6sMRwB1AHb/iD8K tvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjBSYgi0AAAQDAEYwRAIgX2cI sA9Ij2CljSYm33CCJdFSpxi523d849Dx5scjqbgCIE9J3wmZUwzPYlCnakLMr/Qr 5LZQe2L93w+hZCBcMD5xMA0GCSqGSIb3DQEBCwUAA4IBAQCbWewZnDxrIZcMjMrM aFfyENaEZPN67jje0LbdKa2+dqHn7aRd7LmOpIKfYRBLmRCoOwVgh4wMa28QPo9f eGzcw5WL/cBLAW3snqLnKQ2EQlhp0eFMd9Pu+KDXmmtqRwcwylPqGjmzzsBeF2Eb l4kTqq/7wNXAJI5rULlQQ8zv4E7vGDXFfy4m52ziETsIrkM7IHOwrHgNWRnRmBXR HlZGNzHlRA7Yzm7osxX872TuzLHf/zJlpa3u/3UW4SyQ3koqeCKWhZTMJOoaGTRL m96xtI8idijqOdkAbqcv50PdukNiBbpfifLt7sxHU0+DeA4SAGzxZFMcSATQM2Vv r/24 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArdPcrqmc2xcuK9Mdj+LM AszAioeFhsXHpW5lacRm6p8YY/xSxIMnUQvnnmql+0qGGIJNZd+cmeQhOXSl5/YI +lM+PfHSn4VdxAd4Bdw8mwyLCQeeDGNz3KT2TfcO7iSkmnmmVajoaZ+j/59iFz7N dhIC5Z5yfYFOXgkM2CpvXejilhlbPe+UP/uMdPYivu1d8Fw/9ziWteSigmqIcKCj F+os0suiJAF5tMWPLoB9nfcWl0YMfrWEwix1vp9G2TkMAlYRJwPovhtpUKu3o6SK slJJZ42p54Mj2D9mjR2p3/5GCr2KUDqoPc04tNY6swHwgjSBQ98X55xZ3EgMWcvj Y4PoTAdBcR57O4SfDflzXB5W6P9/vwQWFr8cR6IF0AnO6BeAvYhLGwSCDooOAAf6 R90Xby5lIwNPImMWI5jQvCPXx8yDbLD1yPqFCWHX4F6RtUD4Sb6KjhFEU1jziCUk tedvNIDpnuzmSyL18wlHUuQlewAnkCMotppHWcvcwVHCy3YqN4W4VAFqzSIVEVbd NiLUm1nLxXzKt05MRV76C8D6Q21O4mbVarC9j1bJ3Hh+XzdhoMkRZqLYKvJTzPlt 7LrtWi80Z6KcUHJcv3npC/+Wl+u1HKqIlDjaSGNUIz2/Lj1E9jvvwmZK3j+vqM9G PqJMhfs3Pt8ymuI+iWemrjECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 288598831020251830405023210129328454569766 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-28 05:23:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-26 05:23:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'roylab.discovery.wisc.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 709154680467840265610803543021509620282789960575139253561208252563340045095379022478692514605752469477295283794444840870805236577036941823502728723345574441586359553704610004543005158377748049030683111997870957478098907784821220467019941400695895697970589043423843213540200447799813936949370895386489526575915666557578161078298564246823396859328610780817835769316018166946302500171932571887361672262996428824068907648611589349776333799927987256525611424341387898081826639004421974366169710635609509145480039879646164523237005376707968534820448398298763541411833324967101762374857107966202671318841963422753228815880524488440829010260242572711099407662386343815683186004362211635781798903940773115859795811766875870888262301215779019760098770904231569094689205907945777730193160789512754576746777545852561633088099830769289661378923880362472057357283842012137486452359692735521616833980330961180743398745927477262647490464581442456398531587547210655291006990621486178173218705021317016770853181472470221492474473853728971080952229577193428141022526337530940181682962495321101424465963257705200127222872455198568887153242985116164231706276985022777399293008044800413516853786923013346238412168070537622088117684188207429061131270270513 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7ae58cb5bec6bad6bd7e38e92aafdf75e92be767 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roylab.discovery.wisc.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c149881da0000040300483046022100cf34da7bb2d56c01524cb476294e01a96f8b43c93b3134d563df6b3c08e13846022100929a5450563d6843a915068961aeaab1863d2f7569ded6b030e6013b47ab0c4700750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c1498822d000004030046304402205f6708b00f488f60a58d2626df708225d152a718b9db777ce3d0f1e6c723a9b802204f49df0999530ccf6250a76a42ccaff42be4b6507b62fddf0fa164205c303e71 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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