extranet.napma.nato.int
Issued by R3
About this certificate
This digital certificate with serial number 04:aa:be:a2:0b:3c:b6:6d:a5:02:0e:fd:ed:73:6e:ed:41:8b was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=extranet.napma.nato.int
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:aa:be:a2:0b:3c:b6:6d:a5:02:0e:fd:ed:73:6e:ed:41:8bSerial Number (int): 406550540802807396248151327713714754109835
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 7d:11:23:9e:77:f1:fd:f2:44:90:99:64:67:fc:52:f4:96:e9:df:c9
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 38:0a:fc:2f:01:a2:df:c7:d6:a6:e6:1b:07:a5:56:9f:54:7e:5c:21
Fingerprint (sha256): 00:fc:9c:77:dd:c8:0e:4c:53:4d:c7:ef:cb:fc:4b:bb:37:49:3d:51:c3:0a:5e:eb:7f:c0:2e:7c:86:a8:53:0c
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate extranet.napma.nato.int
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for extranet.napma.nato.int
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
extranet.napma.nato.int
extranetext.napma.nato.int
secure.napma.nato.int
extranetext.napma.nato.int
secure.napma.nato.int
Other certificates including the domain name nato.int
(limited to 100 certificates)
shared.napma.nato.int
meet.nahema.nato.int
ims.nato.int
npc.ncia.nato.int
www.natoschool.nato.int
*.nc3a.nato.int
www.nato.int
extranet.napma.nato.int
extranet.napma.nato.int
ap.ndc.nato.int
ncia.nato.int
apx.ndc.nato.int
elearning.natoschool.nato.int
*.ncia.nato.int
mail.cmre.nato.int
ndcmail.ndc.nato.int
www.asc.nato.int
awds.ndc.nato.int
mdm.napma.nato.int
mail.hrf.tr.nato.int
verity.hq.nato.int
extranet.napma.nato.int
ism.hq.nato.int
captiveportal.nahema.nato.int
msiac.nato.int
guest.napma.nato.int
gss.ncia.nato.int
servicedesk.thwaites.co.uk
ssc.nato.int
ncio.nato.int
dnbl.ncia.nato.int
acquia-sites.com
coi.nato.int
*.nc3a.nato.int
cmre.nato.int
itsupport.valeosnackfoods.com
www.ncia.nato.int
iocore.ivv.ncia.nato.int
www.nspa.nato.int
dnbl.ncia.nato.int
shared.napma.nato.int
awacs.nato.int
*.nacc.nato.int
*.ims.nato.int
redirect.napma.nato.int
nexus.dev.nato.int
acquia-sites.com
iocore-cwix.ivv.ncia.nato.int
*.nciss.nato.int
*.reach.nato.int
acquia-sites.com
emm.hq.nato.int
lldb.jallc.nato.int
apx.ndc.nato.int
ndccds.ndc.nato.int
apy.ndc.nato.int
www.ssc.nato.int
guest.napma.nato.int
sts.reach.nato.int
meet.nahema.nato.int
NSOVPN.natoschool.nato.int
ndccds.ndc.nato.int
skypeaccess.shape.nato.int
labs.academy.ncia.nato.int
shared.napma.nato.int
dev.nato.int
www.ssc.nato.int
amdc2-iss.ncia.nato.int
mail.cmre.nato.int
e-isaf.act.nato.int
*.nshq.nato.int
mdm.napma.nato.int
servicedesk.usspeaking.com
webmail.pia.nato.int
acquia-sites.com
diana.nato.int
jftc.nato.int
ticketing.alphamead.com
selfservice.act.nato.int
verity.hq.nato.int
acquia-sites.com
gp.csp.nato.int
mobile.pan.nato.int
meet.nahema.nato.int
redirect.napma.nato.int
acquia-sites.com
napma.nato.int
msiac.nato.int
extranet.napma.nato.int
extranet.napma.nato.int
guest.napma.nato.int
webmail.cmre.nato.int
haivision.hq.nato.int
*.ndss.nato.int
ssc.nato.int
www.msiac.nato.int
ithelpdesk.dccoilireland.com
servicedesk.thwaites.co.uk
eportal.nspa.nato.int
www.nspa.nato.int
meet.nahema.nato.int
ims.nato.int
npc.ncia.nato.int
www.natoschool.nato.int
*.nc3a.nato.int
www.nato.int
extranet.napma.nato.int
extranet.napma.nato.int
ap.ndc.nato.int
ncia.nato.int
apx.ndc.nato.int
elearning.natoschool.nato.int
*.ncia.nato.int
mail.cmre.nato.int
ndcmail.ndc.nato.int
www.asc.nato.int
awds.ndc.nato.int
mdm.napma.nato.int
mail.hrf.tr.nato.int
verity.hq.nato.int
extranet.napma.nato.int
ism.hq.nato.int
captiveportal.nahema.nato.int
msiac.nato.int
guest.napma.nato.int
gss.ncia.nato.int
servicedesk.thwaites.co.uk
ssc.nato.int
ncio.nato.int
dnbl.ncia.nato.int
acquia-sites.com
coi.nato.int
*.nc3a.nato.int
cmre.nato.int
itsupport.valeosnackfoods.com
www.ncia.nato.int
iocore.ivv.ncia.nato.int
www.nspa.nato.int
dnbl.ncia.nato.int
shared.napma.nato.int
awacs.nato.int
*.nacc.nato.int
*.ims.nato.int
redirect.napma.nato.int
nexus.dev.nato.int
acquia-sites.com
iocore-cwix.ivv.ncia.nato.int
*.nciss.nato.int
*.reach.nato.int
acquia-sites.com
emm.hq.nato.int
lldb.jallc.nato.int
apx.ndc.nato.int
ndccds.ndc.nato.int
apy.ndc.nato.int
www.ssc.nato.int
guest.napma.nato.int
sts.reach.nato.int
meet.nahema.nato.int
NSOVPN.natoschool.nato.int
ndccds.ndc.nato.int
skypeaccess.shape.nato.int
labs.academy.ncia.nato.int
shared.napma.nato.int
dev.nato.int
www.ssc.nato.int
amdc2-iss.ncia.nato.int
mail.cmre.nato.int
e-isaf.act.nato.int
*.nshq.nato.int
mdm.napma.nato.int
servicedesk.usspeaking.com
webmail.pia.nato.int
acquia-sites.com
diana.nato.int
jftc.nato.int
ticketing.alphamead.com
selfservice.act.nato.int
verity.hq.nato.int
acquia-sites.com
gp.csp.nato.int
mobile.pan.nato.int
meet.nahema.nato.int
redirect.napma.nato.int
acquia-sites.com
napma.nato.int
msiac.nato.int
extranet.napma.nato.int
extranet.napma.nato.int
guest.napma.nato.int
webmail.cmre.nato.int
haivision.hq.nato.int
*.ndss.nato.int
ssc.nato.int
www.msiac.nato.int
ithelpdesk.dccoilireland.com
servicedesk.thwaites.co.uk
eportal.nspa.nato.int
www.nspa.nato.int
Certificate
The complete raw certificate details for extranet.napma.nato.int in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZzCCBU+gAwIBAgISBKq+ogs8tm2lAg797XNu7UGLMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMTA1MjQwNTAzMzRaFw0yMTA4MjIwNTAzMzRaMCIxIDAeBgNVBAMT F2V4dHJhbmV0Lm5hcG1hLm5hdG8uaW50MIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEAuc96EollLqyElrtC7usxZNIukakYwFuOqV1UMvNEwpbLScnQomEJ qShg93eByn+QWABp+I9Fyq90ERVbqflmLzVWFTMYkmTfuBAmUu2TnrzrRO8S/Zg0 xAqKA59xC/gMLAYMhgufr6gxadgdp3tunFkepgfjirYda4NGAk0GHsDMKMRqi3jf fcoyeg17i5uPATMJFq2qrdFWphmizicbZnb9rPo8sX1cwqa7Eh3SavG8SgFlpavi BLZnSDG8h1Y+F1Bx1g1N+6Bw5IBj/oEDsGOOUsaeRQcxAdHqq8coeI07wJ7GW/XO C4Hy1DyS8ITQmB9VCmcKDyJQmDUSvuxgDXntZzs37krcbquctDO1dJIyge4p0Gcc vVdLPNMFeUlEFzCyGuws1DuufFCAnruCbRjE5PSpqrudhBzg8lVQnquSnPONLAv9 HIMRZxUm9/7ouy8uIRu5q1F5vLu/c84q5mpc4xEaGTZyauoCEuncwHBTxGVjKq8l xDKqbTwEf8j6l9fr4G7Sj+TI796FZjvtBhDSbZTEQiZZmyjXkYvbZ6lnaEelT/j/ /y3rnuyka/YgdFsHfoVUCjDiJfTPxfqO6AwqSGs7JgV/Wa4BV3ebPoDRx50NbYwi cLbIN7N52XXCpz1irJC6lXtx2ohBM7GJa9cqwNIBygYU6J/OJ6krw0kCAwEAAaOC AoUwggKBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUfREjnnfx/fJEkJlkZ/xS9Jbp 38kwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEE STBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUH MAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wVQYDVR0RBE4wTIIXZXh0cmFuZXQu bmFwbWEubmF0by5pbnSCGmV4dHJhbmV0ZXh0Lm5hcG1hLm5hdG8uaW50ghVzZWN1 cmUubmFwbWEubmF0by5pbnQwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC 3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcw ggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgBElGUusO7Or8RAB9io/ijA2uaCvtjL MbU/0zOWtbaBqAAAAXmc+LLzAAAEAwBHMEUCIQDpZn0P5Wp2Rq4kSu53Lpy6RZBV JjZt7HwZoW5r7vm5GgIgOgWJjHjxUOZhLelEdj49BohhtfVUwPhvRuJNYQ5RsWoA dgD2XJQv0XcwIhRUGAgwlFaO400TGTO/3wwvIAvMTvFk4wAAAXmc+LLlAAAEAwBH MEUCIQC0xGeTHCvEFcJQHiXTb/5Ak+RcG4VcElnwIhY9pfCfoQIga3CVpXEQ02LO 9h7iR0dAwIQymntJL0k3kpWUaK+sodgwDQYJKoZIhvcNAQELBQADggEBAEMUbiij OXcRcL8ESTFiC0EvIPQ2vn67sFbhWI1tRboxMsBOiGW7qMR5Z7DRUtTBhnSAEZwr nQ2bra/IunI6mfk22c+IBYZ7s1ph/mCTmxY7Mk1ueDF883IUuwwEAnfn1jgGNizP X95J9kJI4sp1nEAvla8zemwqw7JxfxyGibKAb8A3bMZTOZT//MocjvQ3qz5n+3cx qqF7RIsdNPHW+2356lYU71oxQp0kFeKIfag57CtV/UjLpEOVjeC8elExaabfcTZs yM2kFFOwTNaAIWiu6sUTaaIlESkniX+i3UxuCv+Oawt/cOTlEGzoonud84t7QWBh k0GZErFpe7hiU+g= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuc96EollLqyElrtC7usx ZNIukakYwFuOqV1UMvNEwpbLScnQomEJqShg93eByn+QWABp+I9Fyq90ERVbqflm LzVWFTMYkmTfuBAmUu2TnrzrRO8S/Zg0xAqKA59xC/gMLAYMhgufr6gxadgdp3tu nFkepgfjirYda4NGAk0GHsDMKMRqi3jffcoyeg17i5uPATMJFq2qrdFWphmizicb Znb9rPo8sX1cwqa7Eh3SavG8SgFlpaviBLZnSDG8h1Y+F1Bx1g1N+6Bw5IBj/oED sGOOUsaeRQcxAdHqq8coeI07wJ7GW/XOC4Hy1DyS8ITQmB9VCmcKDyJQmDUSvuxg DXntZzs37krcbquctDO1dJIyge4p0GccvVdLPNMFeUlEFzCyGuws1DuufFCAnruC bRjE5PSpqrudhBzg8lVQnquSnPONLAv9HIMRZxUm9/7ouy8uIRu5q1F5vLu/c84q 5mpc4xEaGTZyauoCEuncwHBTxGVjKq8lxDKqbTwEf8j6l9fr4G7Sj+TI796FZjvt BhDSbZTEQiZZmyjXkYvbZ6lnaEelT/j//y3rnuyka/YgdFsHfoVUCjDiJfTPxfqO 6AwqSGs7JgV/Wa4BV3ebPoDRx50NbYwicLbIN7N52XXCpz1irJC6lXtx2ohBM7GJ a9cqwNIBygYU6J/OJ6krw0kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 406550540802807396248151327713714754109835 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-24 05:03:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-22 05:03:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'extranet.napma.nato.int' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 758040526339090118745591764039933835236818647471915558203184317524688462225211014505203177364082681177384514481360894817210568579148780341756887971307690307171120418762586867689393264327303616458503006653841475211198320432468478365141580961100510765705564710163703071915560014970110518028442528073230093277543118778763443820216044925921967692754148911998806507206180072748819310918020265368185832025666106523649259068941829730794765511015237173397749673614629589263919456342146412691340351205751662448998271952939691966534454148079984775931431538675249799565148197852130724858782344136269746219567008181352507306102780745170805078719401783427529335860300370061549215116645379196487633358825137756252334992462846222615504214043080408594934106726031596028430613123291857773307561143332016577534147773721982441304358356235793821341433967690931973380187881962049449958453438275904957791373118857394209938230962341930097222165602001922479211731508626161767216708154039293398645496614776222841068622595704902322316863257462573298041037212906149847819796802787354985038200263684243135455078825983772370294566496784800423658299365721403036046022236363901014428882330644431996591249103759043206750139265956061445059352579530753186452388692809 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7d11239e77f1fdf24490996467fc52f496e9dfc9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (78 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'extranet.napma.nato.int' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'extranetext.napma.nato.int' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure.napma.nato.int' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076004494652eb0eeceafc44007d8a8fe28c0dae682bed8cb31b53fd33396b5b681a8000001799cf8b2f30000040300473045022100e9667d0fe56a7646ae244aee772e9cba45905526366dec7c19a16e6beef9b91a02203a05898c78f150e6612de944763e3d068861b5f554c0f86f46e24d610e51b16a007600f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e3000001799cf8b2e50000040300473045022100b4c467931c2bc415c2501e25d36ffe4093e45c1b855c1259f022163da5f09fa102206b7095a57110d362cef61ee2474740c084329a7b492f493792959468afaca1d8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0043146e28a339771170bf044931620b412f20f436be7ebbb056e1588d6d45ba3132c04e8865bba8c47967b0d152d4c1867480119c2b9d0d9badafc8ba723a99f936d9cf8805867bb35a61fe60939b163b324d6e78317cf37214bb0c040277e7d63806362ccf5fde49f64248e2ca759c402f95af337a6c2ac3b2717f1c8689b2806fc0376cc6533994fffcca1c8ef437ab3e67fb7731aaa17b448b1d34f1d6fb6df9ea5614ef5a31429d2415e2887da839ec2b55fd48cba443958de0bc7a513169a6df71366cc8cda41453b04cd6802168aeeac51369a225112927897fa2dd4c6e0aff8e6b0b7f70e4e5106ce8a27b9df38b7b41606193419912b1697bb86253e8