phe.rockefeller.edu
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:6a:45:d4:a1:6a:8a:b0:a5:bc:56:11:f4:46:fc:48:1a:d6 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=phe.rockefeller.edu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:6a:45:d4:a1:6a:8a:b0:a5:bc:56:11:f4:46:fc:48:1a:d6Serial Number (int): 297499609461452439545072233448484878424790
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 9a:f4:86:53:be:0a:31:43:54:bd:4b:71:02:ea:d7:1a:d1:dd:ca:5a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 62:ff:78:48:cc:39:4e:be:f2:92:73:0c:9e:cf:52:b5:15:08:88:c4
Fingerprint (sha256): 01:78:3b:92:85:12:00:69:9f:8f:cc:81:e0:1d:28:ef:0b:4c:e0:40:cf:4c:a0:a7:34:8b:f3:75:4a:db:cd:58
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate phe.rockefeller.edu
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for phe.rockefeller.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
phe.rockefeller.edu
theleonardodavinciproject.net
theleonardodnaproject.net
theleonardodnaproject.org
theleonardodavinciproject.net
theleonardodnaproject.net
theleonardodnaproject.org
Other certificates including the domain name rockefeller.edu
(limited to 100 certificates)
courses.rockefeller.edu
pubsubmit.rockefeller.edu
phe.rockefeller.edu
rubbdb2.rockefeller.edu
stage.rockedu.rockefeller.edu
mchc.rockefeller.edu
www.rockefeller.edu
phe.rockefeller.edu
parclip.rockefeller.edu
rushib.rockefeller.edu
formspolicies.rockefeller.edu
rocklab.rockefeller.edu
sopstudentapplication.rockefeller.edu
hgidlabredcap.rockefeller.edu
academicseminars.rockefeller.edu
ldaptest.rockefeller.edu
incubator.rockefeller.edu
formspolicies.rockefeller.edu
cctscertificate.rockefeller.edu
giveandjoin.rockefeller.edu
womenandscience.rockefeller.edu
oas.rockefeller.edu
cctscertificate.rockefeller.edu
phe.rockefeller.edu
vosshall-intra.rockefeller.edu
rumail.rockefeller.edu
appext.rockefeller.edu
bridges.rockefeller.edu
labapps.rockefeller.edu
cp.rockefeller.edu
pilotprojectsreview.rockefeller.edu
rumail.rockefeller.edu
netstat.rockefeller.edu
surfapplication.rockefeller.edu
cctscertificate.rockefeller.edu
go.rockefeller.edu
notifyru.rockefeller.edu
pubsubmit.rockefeller.edu
webmail.rockefeller.edu
reeke-pubdata.rockefeller.edu
eventreg.rockefeller.edu
elf.rockefeller.edu
virtualroom-graduate.rockefeller.edu
bh.rockefeller.edu
postdocalumni.rockefeller.edu
scholarapplication.rockefeller.edu
em.rockefeller.edu
itservices.rockefeller.edu
cchi.rockefeller.edu
virtualroom.rockefeller.edu
ruauth2.rockefeller.edu
bh.rockefeller.edu
pdf-files-test.rockefeller.edu
sopstudentapplication.rockefeller.edu
postdochousingwaitlist.rockefeller.edu
www.rockefeller.edu
xenopus.rockefeller.edu
giveandjoin.rockefeller.edu
maimonlab.rockefeller.edu
ruifar.rockefeller.edu
images.rockefeller.edu
www.rockefeller.edu
test4.rockedu.rockefeller.edu
rumail.rockefeller.edu
appintpl.rockefeller.edu
lab.rockefeller.edu
sees.rockefeller.edu
phe.rockefeller.edu
test19.rockedu.rockefeller.edu
plutus.rockefeller.edu
housinglottery.rockefeller.edu
hospitalhelpdesk.rockefeller.edu
biorhythm.rockefeller.edu
netstat.rockefeller.edu
cctscertificate.rockefeller.edu
itmd.rockefeller.edu
cctscertificate.rockefeller.edu
test22.rockedu.rockefeller.edu
zhao.labapps.rockefeller.edu
giveandjoin.rockefeller.edu
elf.rockefeller.edu
webmail.rockefeller.edu
darwin.rockefeller.edu
gradrecruitment.rockefeller.edu
mchc.rockefeller.edu
ruifar.rockefeller.edu
phe.rockefeller.edu
peggy.rockefeller.edu
sslvpntest.rockefeller.edu
rumail.rockefeller.edu
rufirst.rockefeller.edu
virtualroom.rockefeller.edu
housinglottery.rockefeller.edu
courseevaluations.rockefeller.edu
digitalcommons.rockefeller.edu
ias4web.rockefeller.edu
macromolecule.rockefeller.edu
anvesana.rockefeller.edu
sopstudentapplication.rockefeller.edu
graduateapplication.rockefeller.edu
pubsubmit.rockefeller.edu
phe.rockefeller.edu
rubbdb2.rockefeller.edu
stage.rockedu.rockefeller.edu
mchc.rockefeller.edu
www.rockefeller.edu
phe.rockefeller.edu
parclip.rockefeller.edu
rushib.rockefeller.edu
formspolicies.rockefeller.edu
rocklab.rockefeller.edu
sopstudentapplication.rockefeller.edu
hgidlabredcap.rockefeller.edu
academicseminars.rockefeller.edu
ldaptest.rockefeller.edu
incubator.rockefeller.edu
formspolicies.rockefeller.edu
cctscertificate.rockefeller.edu
giveandjoin.rockefeller.edu
womenandscience.rockefeller.edu
oas.rockefeller.edu
cctscertificate.rockefeller.edu
phe.rockefeller.edu
vosshall-intra.rockefeller.edu
rumail.rockefeller.edu
appext.rockefeller.edu
bridges.rockefeller.edu
labapps.rockefeller.edu
cp.rockefeller.edu
pilotprojectsreview.rockefeller.edu
rumail.rockefeller.edu
netstat.rockefeller.edu
surfapplication.rockefeller.edu
cctscertificate.rockefeller.edu
go.rockefeller.edu
notifyru.rockefeller.edu
pubsubmit.rockefeller.edu
webmail.rockefeller.edu
reeke-pubdata.rockefeller.edu
eventreg.rockefeller.edu
elf.rockefeller.edu
virtualroom-graduate.rockefeller.edu
bh.rockefeller.edu
postdocalumni.rockefeller.edu
scholarapplication.rockefeller.edu
em.rockefeller.edu
itservices.rockefeller.edu
cchi.rockefeller.edu
virtualroom.rockefeller.edu
ruauth2.rockefeller.edu
bh.rockefeller.edu
pdf-files-test.rockefeller.edu
sopstudentapplication.rockefeller.edu
postdochousingwaitlist.rockefeller.edu
www.rockefeller.edu
xenopus.rockefeller.edu
giveandjoin.rockefeller.edu
maimonlab.rockefeller.edu
ruifar.rockefeller.edu
images.rockefeller.edu
www.rockefeller.edu
test4.rockedu.rockefeller.edu
rumail.rockefeller.edu
appintpl.rockefeller.edu
lab.rockefeller.edu
sees.rockefeller.edu
phe.rockefeller.edu
test19.rockedu.rockefeller.edu
plutus.rockefeller.edu
housinglottery.rockefeller.edu
hospitalhelpdesk.rockefeller.edu
biorhythm.rockefeller.edu
netstat.rockefeller.edu
cctscertificate.rockefeller.edu
itmd.rockefeller.edu
cctscertificate.rockefeller.edu
test22.rockedu.rockefeller.edu
zhao.labapps.rockefeller.edu
giveandjoin.rockefeller.edu
elf.rockefeller.edu
webmail.rockefeller.edu
darwin.rockefeller.edu
gradrecruitment.rockefeller.edu
mchc.rockefeller.edu
ruifar.rockefeller.edu
phe.rockefeller.edu
peggy.rockefeller.edu
sslvpntest.rockefeller.edu
rumail.rockefeller.edu
rufirst.rockefeller.edu
virtualroom.rockefeller.edu
housinglottery.rockefeller.edu
courseevaluations.rockefeller.edu
digitalcommons.rockefeller.edu
ias4web.rockefeller.edu
macromolecule.rockefeller.edu
anvesana.rockefeller.edu
sopstudentapplication.rockefeller.edu
graduateapplication.rockefeller.edu
Certificate
The complete raw certificate details for phe.rockefeller.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFtDCCBJygAwIBAgISA2pF1KFqirClvFYR9Eb8SBrWMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMDgwMTM3MjFaFw0y MDAxMDYwMTM3MjFaMB4xHDAaBgNVBAMTE3BoZS5yb2NrZWZlbGxlci5lZHUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR0+S2WsUmVNcwtImUlskZ2e8x F9kNhPbFmcgVPNeIBU7ShK7Dn0bkHZNHm/9xmP2KG8OLT0lnizXMVPVQTXd+iG4d RlwaoKlzHVqKdADr2+dWWo2RnLcuErTt3AZc5ylgwmT2p9xu1/ptUYVA+yXs9mu7 hc3GVi20LWFOTsQZ3TVNhjyU7Ya/h+T9pBJVWfkTcIeKYaOo3s9vOzeJkuYLAV+8 IktrbW4jWfCKxtt+GTsPYnITr03P8AsMSBsJdskDumcQFgVF8OHAjFLq0V9X1ycH qrrHe4dpb087FBM+wtBlcZQ2itXF4ejpbx44HzEYp7XLCnIIF2vZ3FazTnMtAgMB AAGjggK+MIICujAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJr0hlO+CjFDVL1LcQLq 1xrR3cpaMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUF BwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNy eXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNy eXB0Lm9yZy8wcwYDVR0RBGwwaoITcGhlLnJvY2tlZmVsbGVyLmVkdYIddGhlbGVv bmFyZG9kYXZpbmNpcHJvamVjdC5uZXSCGXRoZWxlb25hcmRvZG5hcHJvamVjdC5u ZXSCGXRoZWxlb25hcmRvZG5hcHJvamVjdC5vcmcwTAYDVR0gBEUwQzAIBgZngQwB AgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRz ZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwBep3P531bA57U2 SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAW2pOm55AAAEAwBIMEYCIQC4bvUNwSSI ttnXoEue6wn6jysrsEL4kI3kYKq+DbZxcAIhAK61QszL7Tx12/VRwti8Xw8SkzNO meVieUr6if/nhCYnAHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH9HgA AAFtqTpuoAAABAMARzBFAiAT7a1eN7cB1e8Q7FXq4F/jB05I2PMqgq/u5ksJt6dT nwIhALFLLjWPFgPQm7dj0KDqBVKLK/Jo/tTZzY/VCWdz4239MA0GCSqGSIb3DQEB CwUAA4IBAQAXa8DkTTUhOF/kYDDxqpBESdtPBDbrJplccelsicQ4Hso8Nt/avwD+ akPUGDOPNv7PXAcFJ8Lv9FsWRwIcfVIL7GKTQFts3v0bfs4qE+MArbvMxW0rv0t2 N0Raca91XEGOhQjaWMjlQKvKe/rRTLJZQldwDyer8kzqarqIlWQpnVTcGI2LiZbe 4DRZ+B0TGazs49MWb1oF3S7cIp+aDMrubKZSIcIY7zDHIjc422nIE4q/HiWeKsP2 y/JR95AozILItlL4QS8nF3x9ubKFB/Rv1zAS5sjMAsNGVBkXPX93hCTXXPiZYVgC fcF+v2KRAh9esJ+diFfQFiIRjmn7bWAA -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0dPktlrFJlTXMLSJlJbJ GdnvMRfZDYT2xZnIFTzXiAVO0oSuw59G5B2TR5v/cZj9ihvDi09JZ4s1zFT1UE13 fohuHUZcGqCpcx1ainQA69vnVlqNkZy3LhK07dwGXOcpYMJk9qfcbtf6bVGFQPsl 7PZru4XNxlYttC1hTk7EGd01TYY8lO2Gv4fk/aQSVVn5E3CHimGjqN7Pbzs3iZLm CwFfvCJLa21uI1nwisbbfhk7D2JyE69Nz/ALDEgbCXbJA7pnEBYFRfDhwIxS6tFf V9cnB6q6x3uHaW9POxQTPsLQZXGUNorVxeHo6W8eOB8xGKe1ywpyCBdr2dxWs05z LQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 297499609461452439545072233448484878424790 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-08 01:37:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-06 01:37:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'phe.rockefeller.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26488294271490376536681831174903433831582977933902183007390904018178262452599666197550262681348474148920819927539538780159645736297976500032629304785907541843140475385081871502680474559092521770513992258329051246985128539108688858262464051779845346868206795314316534341256987550736147596440260396395523685616449474704952699843218767488292566423481156523307837489539646997802123295947849286102709223164251310434122413540882392111116358339073525207147399186033354655080845333748940606565162791701943212147469333602391622783833767728312123606485230691335173477194433543441229813713861336387744820615225079229012836774701 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9af48653be0a314354bd4b7102ead71ad1ddca5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'phe.rockefeller.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'theleonardodavinciproject.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'theleonardodnaproject.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'theleonardodnaproject.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016da93a6e790000040300483046022100b86ef50dc12488b6d9d7a04b9eeb09fa8f2b2bb042f8908de460aabe0db67170022100aeb542cccbed3c75dbf551c2d8bc5f0f1293334e99e562794afa89ffe7842627007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016da93a6ea00000040300473045022013edad5e37b701d5ef10ec55eae05fe3074e48d8f32a82afeee64b09b7a7539f022100b14b2e358f1603d09bb763d0a0ea05528b2bf268fed4d9cd8fd5096773e36dfd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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