staging-recruitment.raf.mod.uk
Issued by R3
About this certificate
This digital certificate with serial number 03:91:87:a6:ad:ab:40:d1:ca:46:05:bf:66:18:60:ea:75:88 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=staging-recruitment.raf.mod.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:91:87:a6:ad:ab:40:d1:ca:46:05:bf:66:18:60:ea:75:88Serial Number (int): 310858112221951235449302133000772896060808
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8e:d5:8f:0d:7c:83:44:2e:ad:a7:fe:09:50:18:7d:4b:32:dc:8b:6d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 66:9e:8c:c1:4a:73:95:ff:14:97:6e:9d:4c:27:b5:64:ea:1b:ba:b2
Fingerprint (sha256): 00:bb:cb:ee:45:54:a2:d9:14:d8:ab:95:83:7d:0f:97:ee:be:b6:14:69:8e:19:8d:52:00:37:3e:ea:4b:e1:08
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate staging-recruitment.raf.mod.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for staging-recruitment.raf.mod.uk
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
staging-recruitment.raf.mod.uk
Other certificates including the domain name mod.uk
(limited to 100 certificates)
*.dgwmail.mod.uk
test.asems.mod.uk
indirect.public.mod.uk
helpdesk.defencegateway.mod.uk
staging-recruitment.raf.mod.uk
api.ocp1.azure.dso.digital.mod.uk
admin-app.conor.fieldreport.digital.mod.uk
sba.mod.uk
ems.ahe.mod.uk
api.ocp3.azure.dso.digital.mod.uk
asems.mod.uk
www.armynet.mod.uk
www.raf.mod.uk
vle.rmasandhurst.mod.uk
jive.defencegateway.mod.uk
dc.mod.uk
mod.uk
*.defencegateway.mod.uk
mta-sts.rafac.mod.uk
testfotoweb.royalnavy.mod.uk
mod.uk
tfs.royalnavy.mod.uk
qbp.army.mod.uk
api.ocp4.azure.dso.digital.mod.uk
clms.mod.uk
vle.rmasandhurst.mod.uk
chatbot-frontend-staging.royalnavy.mod.uk
www.mafis.mod.uk
atga.mod.uk
bader.mod.uk
*.defencegateway.mod.uk
www.da.mod.uk
monitoring.stage.r2d2.alpha.digital.mod.uk
emsgw.mod.uk
www.asems.mod.uk
mod.uk
*.bader.mod.uk
armycms.mod.uk
www.asems.mod.uk
dcdc.mod.uk
www.defenceshare.mod.uk
*.apps.ocp1.azure.dso.digital.mod.uk
api.ocp2.azure.dso.digital.mod.uk
*.dasa.service.mod.uk
sni.cloudflaressl.com
www.defencebrandportal.mod.uk
www.dne-careerhub.defencegateway.mod.uk
des.mod.uk
dle.mod.uk
api.ocp4.azure.dso.digital.mod.uk
t.recruitment-campaigns.mod.uk
www.atga.mod.uk
sba.mod.uk
mod.uk
www.atga.mod.uk
mod.uk
vle.rmasandhurst.mod.uk
backoffice.tom.fieldreport.digital.mod.uk
api.ocp3.azure.dso.digital.mod.uk
doctrine.mod.uk
qbp.army.mod.uk
armymail.mod.uk
testcontracts.mod.uk
api.ocp3.azure.dso.digital.mod.uk
staging-recruitment.raf.mod.uk
rcds-extranet.mod.uk
foundry.digital.mod.uk
api.ocp2.azure.dso.digital.mod.uk
www.armynet.mod.uk
mod.uk
intpg1.recruitment.mod.uk
register.byod.da.mod.uk
design-system.digital.mod.uk
asems.mod.uk
*.apps.ocp3.azure.dso.digital.mod.uk
www.armynet.mod.uk
army.mod.uk
jobs.raf.mod.uk
monitoring.stage.r2d2.alpha.digital.mod.uk
asems.mod.uk
design-system.navy.digital.mod.uk
www.asems.mod.uk
webexuser.learn.mod.uk
design-system.navy.digital.mod.uk
sni.cloudflaressl.com
mod.uk
hybrid.mod.gov.uk
www.nsv.mod.uk
www.bdfl.mod.uk
alumni.raf.mod.uk
cms.raf.mod.uk
dtt.cms.dlp.mod.uk
*.corpserv.mod.uk
monitoring.stage.r2d2.alpha.digital.mod.uk
*.defencegateway.mod.uk
mod.uk
api.alan.fieldreport.digital.mod.uk
mod.uk
servicemanual.digital.mod.uk
hybrid.mod.gov.uk
test.asems.mod.uk
indirect.public.mod.uk
helpdesk.defencegateway.mod.uk
staging-recruitment.raf.mod.uk
api.ocp1.azure.dso.digital.mod.uk
admin-app.conor.fieldreport.digital.mod.uk
sba.mod.uk
ems.ahe.mod.uk
api.ocp3.azure.dso.digital.mod.uk
asems.mod.uk
www.armynet.mod.uk
www.raf.mod.uk
vle.rmasandhurst.mod.uk
jive.defencegateway.mod.uk
dc.mod.uk
mod.uk
*.defencegateway.mod.uk
mta-sts.rafac.mod.uk
testfotoweb.royalnavy.mod.uk
mod.uk
tfs.royalnavy.mod.uk
qbp.army.mod.uk
api.ocp4.azure.dso.digital.mod.uk
clms.mod.uk
vle.rmasandhurst.mod.uk
chatbot-frontend-staging.royalnavy.mod.uk
www.mafis.mod.uk
atga.mod.uk
bader.mod.uk
*.defencegateway.mod.uk
www.da.mod.uk
monitoring.stage.r2d2.alpha.digital.mod.uk
emsgw.mod.uk
www.asems.mod.uk
mod.uk
*.bader.mod.uk
armycms.mod.uk
www.asems.mod.uk
dcdc.mod.uk
www.defenceshare.mod.uk
*.apps.ocp1.azure.dso.digital.mod.uk
api.ocp2.azure.dso.digital.mod.uk
*.dasa.service.mod.uk
sni.cloudflaressl.com
www.defencebrandportal.mod.uk
www.dne-careerhub.defencegateway.mod.uk
des.mod.uk
dle.mod.uk
api.ocp4.azure.dso.digital.mod.uk
t.recruitment-campaigns.mod.uk
www.atga.mod.uk
sba.mod.uk
mod.uk
www.atga.mod.uk
mod.uk
vle.rmasandhurst.mod.uk
backoffice.tom.fieldreport.digital.mod.uk
api.ocp3.azure.dso.digital.mod.uk
doctrine.mod.uk
qbp.army.mod.uk
armymail.mod.uk
testcontracts.mod.uk
api.ocp3.azure.dso.digital.mod.uk
staging-recruitment.raf.mod.uk
rcds-extranet.mod.uk
foundry.digital.mod.uk
api.ocp2.azure.dso.digital.mod.uk
www.armynet.mod.uk
mod.uk
intpg1.recruitment.mod.uk
register.byod.da.mod.uk
design-system.digital.mod.uk
asems.mod.uk
*.apps.ocp3.azure.dso.digital.mod.uk
www.armynet.mod.uk
army.mod.uk
jobs.raf.mod.uk
monitoring.stage.r2d2.alpha.digital.mod.uk
asems.mod.uk
design-system.navy.digital.mod.uk
www.asems.mod.uk
webexuser.learn.mod.uk
design-system.navy.digital.mod.uk
sni.cloudflaressl.com
mod.uk
hybrid.mod.gov.uk
www.nsv.mod.uk
www.bdfl.mod.uk
alumni.raf.mod.uk
cms.raf.mod.uk
dtt.cms.dlp.mod.uk
*.corpserv.mod.uk
monitoring.stage.r2d2.alpha.digital.mod.uk
*.defencegateway.mod.uk
mod.uk
api.alan.fieldreport.digital.mod.uk
mod.uk
servicemanual.digital.mod.uk
hybrid.mod.gov.uk
Certificate
The complete raw certificate details for staging-recruitment.raf.mod.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFwjCCBKqgAwIBAgISA5GHpq2rQNHKRgW/Zhhg6nWIMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMjA3MDEwNzAwMzJaFw0yMjA5MjkwNzAwMzFaMCkxJzAlBgNVBAMT HnN0YWdpbmctcmVjcnVpdG1lbnQucmFmLm1vZC51azCCAaIwDQYJKoZIhvcNAQEB BQADggGPADCCAYoCggGBAMZcdkrDB74EHIzc7LKmgsJB9TajFZQ4My43HSQnJG8a enqpsXh2Qc4WAfsGgPiyUqYS0UuQrtVbBi53Fx/EP0x+mhk3wo8IVDa69MZya08T 4G2apU6ZdClieyDzZuGTdY0KpBWduNNGOXjppvqBRiazwwDaCQx9LioqR3Ty4AyA G5dbKkmH8XSNdYQMXEqtXS6WAlTk98Se029B5DlRUzYrgB0NV0+5xJNs/E3zAsxD G0eFCBEMbV02zUFTQgW/lPqpJcR1fxDu9pLFoLWOsJ8zfN5tOBofH4TIdIMpWhld dleHOI8iNf218mKAGf6CpnnCORPaAEBgBM+Rn7CTGq4KgxlPhVVJYWHIiuwdPtPH IUbrjysMxueunl9CUaUHW9iCMDgcQHTdss+kzJsQ1vZkayRo7YeAaLQcflksDi/w DLDRkS34ECSmovTOAefD6s8zGsM/C5QBCVeMB9Ql72Fc6La7xFVPn7K/RyJO43je ucdZ2FKl3X4yCK850QyxawIDAQABo4ICWTCCAlUwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBSO1Y8NfINELq2n/glQGH1LMtyLbTAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzApBgNVHREEIjAggh5zdGFnaW5nLXJlY3J1aXRtZW50LnJhZi5tb2QudWswTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdQBByMqx3yJGShDGoToJQodeTjGLGwPr60vHaPCQYpYG9gAAAYG4xpyXAAAE AwBGMEQCIHBUYQ90wz+/jzs/rL2cQSUHaGB7V7svX1P6FsqqvrhbAiAT4O9icGGA 6A+Q4yOX4W8ssaoe/Cu057eaQzQZss+TmQB3AEalVet1+pEgMLWiiWn0830RLEF0 vv1JuIWr8vxw/m1HAAABgbjGnTEAAAQDAEgwRgIhAMr3fUHnhXYxYy4V4YRabanQ Zj7GrmhX+iT+46spHn+cAiEAuZvaLy/es6TXP7q09iEIlVKBoERQ/cw6dOLt2+hZ dGYwDQYJKoZIhvcNAQELBQADggEBAGO5jRStyZvUd3T5hktM0LKTGsYNYTWw0WW/ IFivQ8M6Vfnu78xkZsICqqk8WjfDAxuOOHAy6e6VzC/urMdJrB2psheOzj3hQl0D iBLeotsx7ukfrXzLa7dIXlnp7fgHOkKWq1FZf2OaI08JRWP9v/a+520xpxzxzOwC s7c6cNEYD7unnFfQc/5/SHzEIjxw8GY0FYI4ofLVKT6ZYxffjxIVsUmIsA2h00Mc MudoEvZIvlR7RqhqhFqUMd93ckSmc4SllEuGUuMkIWRX0ZnuJf77xz0jAR1GrK8F w6ELWOIwi4UO/w0XUKcrAYIKm5Eb7/daiaX1gzvhNavTDRLCStA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAxlx2SsMHvgQcjNzssqaC wkH1NqMVlDgzLjcdJCckbxp6eqmxeHZBzhYB+waA+LJSphLRS5Cu1VsGLncXH8Q/ TH6aGTfCjwhUNrr0xnJrTxPgbZqlTpl0KWJ7IPNm4ZN1jQqkFZ2400Y5eOmm+oFG JrPDANoJDH0uKipHdPLgDIAbl1sqSYfxdI11hAxcSq1dLpYCVOT3xJ7Tb0HkOVFT NiuAHQ1XT7nEk2z8TfMCzEMbR4UIEQxtXTbNQVNCBb+U+qklxHV/EO72ksWgtY6w nzN83m04Gh8fhMh0gylaGV12V4c4jyI1/bXyYoAZ/oKmecI5E9oAQGAEz5GfsJMa rgqDGU+FVUlhYciK7B0+08chRuuPKwzG566eX0JRpQdb2IIwOBxAdN2yz6TMmxDW 9mRrJGjth4BotBx+WSwOL/AMsNGRLfgQJKai9M4B58PqzzMawz8LlAEJV4wH1CXv YVzotrvEVU+fsr9HIk7jeN65x1nYUqXdfjIIrznRDLFrAgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 310858112221951235449302133000772896060808 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-07-01 07:00:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-29 07:00:31 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging-recruitment.raf.mod.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 4501563673974667598405248582310421541771771073794981303391417001006548417381591269572560883558607015789762987523019240804302822265087329225603905489312484529466050185291570257454501587212476841393404301461512302812782840006638682184128312724413419647025622524530227176276877828801533730402513048382684678061697252736608678064258505144624525234542122072035044315126643214541197897288179222258991129660608898607616045589659230053170333961774950691027569167791106337367608377596018870192181045088991626178531425817812954452334332499520931681670662143425153472843322445386543942422273762265308723214291590268624964986823229226962475089027279251055106668417307674839573781314025298393194868857819506066348769519212159716529024329824308120479213791413397919725437224347807840299776218239273810121293660141992938033357963806591812823434437538247552388259838078484129061793611271534471557752508656779352872429077901290730900389933419 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8ed58f0d7c83442eada7fe0950187d4b32dc8b6d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-recruitment.raf.mod.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000750041c8cab1df22464a10c6a13a0942875e4e318b1b03ebeb4bc768f090629606f600000181b8c69c97000004030046304402207054610f74c33fbf8f3b3facbd9c41250768607b57bb2f5f53fa16caaabeb85b022013e0ef62706180e80f90e32397e16f2cb1aa1efc2bb4e7b79a433419b2cf939900770046a555eb75fa912030b5a28969f4f37d112c4174befd49b885abf2fc70fe6d4700000181b8c69d310000040300483046022100caf77d41e7857631632e15e1845a6da9d0663ec6ae6857fa24fee3ab291e7f9c022100b99bda2f2fdeb3a4d73fbab4f62108955281a04450fdcc3a74e2eddbe8597466 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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