kep-guinness.af.contentsquare.net
Issued by R3
About this certificate
This digital certificate with serial number 03:35:27:d9:54:bd:df:32:8c:67:16:4e:9c:77:c1:85:03:10 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=kep-guinness.af.contentsquare.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:35:27:d9:54:bd:df:32:8c:67:16:4e:9c:77:c1:85:03:10Serial Number (int): 279424791581109997968519538028566945268496
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 63:36:a2:d0:ec:b0:24:f6:03:f6:5f:1e:26:e4:c7:e7:d5:59:73:7e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 02:dc:9c:c6:b4:cb:f4:17:05:9e:97:3b:cc:19:88:51:a6:45:44:99
Fingerprint (sha256): 01:a7:5f:95:62:2f:c9:83:49:3f:dc:92:5d:37:a9:67:d1:54:d6:32:43:a9:12:1b:f8:8b:06:f3:86:ae:ab:e2
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate kep-guinness.af.contentsquare.net
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kep-guinness.af.contentsquare.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ka.af.contentsquare.net
ka1.af.contentsquare.net
kep-guinness.af.contentsquare.net
ka1.af.contentsquare.net
kep-guinness.af.contentsquare.net
Other certificates including the domain name contentsquare.net
(limited to 100 certificates)
ca.contentsquare.net
q-us1-staging.az.contentsquare.net
k-staging.az.contentsquare.net
c-staging.az.contentsquare.net
dep-staging.af.contentsquare.net
k.az.contentsquare.net
kep-guinness.af.contentsquare.net
*.contentsquare.net
k-us1.az.contentsquare.net
dep-mobile.aa.contentsquare.net
c-wazuh-dev.contentsquare.net
q-staging.ba.contentsquare.net
w-staging.contentsquare.net
c.az.contentsquare.net
m-staging.az.contentsquare.net
m-staging.az.contentsquare.net
ka.af.contentsquare.net
kep-guinness.ba.contentsquare.net
*.contentsquare.net
w-staging.contentsquare.net
ka.af.contentsquare.net
q-staging.af.contentsquare.net
cw.contentsquare.net
dep-bench-dev.ba.contentsquare.net
b-staging.ba.contentsquare.net
*.contentsquare.net
cw.contentsquare.net
kep-mobile.ba.contentsquare.net
srm.af.contentsquare.net
csxd-01.contentsquare.net
kep-web-test.ba.contentsquare.net
ka-staging.af.contentsquare.net
csxd-01.contentsquare.net
c-dof-dev.contentsquare.net
k-aeu-next4.contentsquare.net
q-us1.az.contentsquare.net
k-us1-staging.az.contentsquare.net
c.az.contentsquare.net
k-staging.az.contentsquare.net
c-staging.az.contentsquare.net
q-eu1.az.contentsquare.net
kep-malka.af.contentsquare.net
q-us1.az.contentsquare.net
c-staging.az.contentsquare.net
dep-mobile.aa.contentsquare.net
kep-migr-test-dev.ba.contentsquare.net
csxd-01.contentsquare.net
ka.af.contentsquare.net
c.az.contentsquare.net
c.az.contentsquare.net
*.contentsquare.net
kep-malka-staging.af.contentsquare.net
csxd-01.contentsquare.net
k-eu1.az.contentsquare.net
t.contentsquare.net
ca-dof-dev.contentsquare.net
dep-malka.af.contentsquare.net
dep-revamp-dev.ba.contentsquare.net
k-us1.az.contentsquare.net
k-aus1.contentsquare.net
q-eu1.az.contentsquare.net
dep-malka.af.contentsquare.net
b.af.contentsquare.net
k.az.contentsquare.net
dep-mobile-staging.af.contentsquare.net
dep.aa.contentsquare.net
b.af.contentsquare.net
srm.aa.contentsquare.net
kn-aeu1.contentsquare.net
k-us1.az.contentsquare.net
csxd-01.contentsquare.net
c-staging.az.contentsquare.net
k-eu1.az.contentsquare.net
*.contentsquare.net
dep-malka-mobile.af.contentsquare.net
k-staging.az.contentsquare.net
dep-mobile-staging.af.contentsquare.net
c.az.contentsquare.net
dep-malka-dev.ba.contentsquare.net
b.aa.contentsquare.net
t-staging.contentsquare.net
kep-malka-staging.af.contentsquare.net
b.ba.contentsquare.net
k-eu1.az.contentsquare.net
dep-fb.ba.contentsquare.net
c.az.contentsquare.net
ka.aa.contentsquare.net
l.az.contentsquare.net
dep.af.contentsquare.net
k.az.contentsquare.net
dep.af.contentsquare.net
b.bf.contentsquare.net
guinness-ipa-aeu1-dev.contentsquare.net
ka.af.contentsquare.net
ka-aeu1.contentsquare.net
ka-aeu1-staging.contentsquare.net
csxd-02.contentsquare.net
dep.af.contentsquare.net
ka-staging.af.contentsquare.net
ca-dev.contentsquare.net
q-us1-staging.az.contentsquare.net
k-staging.az.contentsquare.net
c-staging.az.contentsquare.net
dep-staging.af.contentsquare.net
k.az.contentsquare.net
kep-guinness.af.contentsquare.net
*.contentsquare.net
k-us1.az.contentsquare.net
dep-mobile.aa.contentsquare.net
c-wazuh-dev.contentsquare.net
q-staging.ba.contentsquare.net
w-staging.contentsquare.net
c.az.contentsquare.net
m-staging.az.contentsquare.net
m-staging.az.contentsquare.net
ka.af.contentsquare.net
kep-guinness.ba.contentsquare.net
*.contentsquare.net
w-staging.contentsquare.net
ka.af.contentsquare.net
q-staging.af.contentsquare.net
cw.contentsquare.net
dep-bench-dev.ba.contentsquare.net
b-staging.ba.contentsquare.net
*.contentsquare.net
cw.contentsquare.net
kep-mobile.ba.contentsquare.net
srm.af.contentsquare.net
csxd-01.contentsquare.net
kep-web-test.ba.contentsquare.net
ka-staging.af.contentsquare.net
csxd-01.contentsquare.net
c-dof-dev.contentsquare.net
k-aeu-next4.contentsquare.net
q-us1.az.contentsquare.net
k-us1-staging.az.contentsquare.net
c.az.contentsquare.net
k-staging.az.contentsquare.net
c-staging.az.contentsquare.net
q-eu1.az.contentsquare.net
kep-malka.af.contentsquare.net
q-us1.az.contentsquare.net
c-staging.az.contentsquare.net
dep-mobile.aa.contentsquare.net
kep-migr-test-dev.ba.contentsquare.net
csxd-01.contentsquare.net
ka.af.contentsquare.net
c.az.contentsquare.net
c.az.contentsquare.net
*.contentsquare.net
kep-malka-staging.af.contentsquare.net
csxd-01.contentsquare.net
k-eu1.az.contentsquare.net
t.contentsquare.net
ca-dof-dev.contentsquare.net
dep-malka.af.contentsquare.net
dep-revamp-dev.ba.contentsquare.net
k-us1.az.contentsquare.net
k-aus1.contentsquare.net
q-eu1.az.contentsquare.net
dep-malka.af.contentsquare.net
b.af.contentsquare.net
k.az.contentsquare.net
dep-mobile-staging.af.contentsquare.net
dep.aa.contentsquare.net
b.af.contentsquare.net
srm.aa.contentsquare.net
kn-aeu1.contentsquare.net
k-us1.az.contentsquare.net
csxd-01.contentsquare.net
c-staging.az.contentsquare.net
k-eu1.az.contentsquare.net
*.contentsquare.net
dep-malka-mobile.af.contentsquare.net
k-staging.az.contentsquare.net
dep-mobile-staging.af.contentsquare.net
c.az.contentsquare.net
dep-malka-dev.ba.contentsquare.net
b.aa.contentsquare.net
t-staging.contentsquare.net
kep-malka-staging.af.contentsquare.net
b.ba.contentsquare.net
k-eu1.az.contentsquare.net
dep-fb.ba.contentsquare.net
c.az.contentsquare.net
ka.aa.contentsquare.net
l.az.contentsquare.net
dep.af.contentsquare.net
k.az.contentsquare.net
dep.af.contentsquare.net
b.bf.contentsquare.net
guinness-ipa-aeu1-dev.contentsquare.net
ka.af.contentsquare.net
ka-aeu1.contentsquare.net
ka-aeu1-staging.contentsquare.net
csxd-02.contentsquare.net
dep.af.contentsquare.net
ka-staging.af.contentsquare.net
ca-dev.contentsquare.net
Certificate
The complete raw certificate details for kep-guinness.af.contentsquare.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgISAzUn2VS93zKMZxZOnHfBhQMQMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMjEyMDkwNzI3NTZaFw0yMzAzMDkwNzI3NTVaMCwxKjAoBgNVBAMT IWtlcC1ndWlubmVzcy5hZi5jb250ZW50c3F1YXJlLm5ldDCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBALtiRiKZ/5WRZw1i2DOEa2vnI1GtAu0kDUj4exX5 kGdCtN9IO+yvkaZLOYjMwLI6vFXQS8xS50QZn4wzHnSxmazmoKhILCElo7MuGEw/ +G/ElokU94MRM1YNaO+lJSLMPb4hy1nEU8iK/VeMXoZXArFdUZlO1SV4plPipEwn WGvbbYfgb+HRUdxnTpPvR5Qc8tIxv55ahhQwcudNUWGK+OOH4RHOs5KWVBnzxxTd GRy6MRlH5xGxlSJ1biKVs+710fWYUuvzJ01xhADh3vK/78Qg9JLUPXYCBNIn+aRx pMRA9zojOZYD4lLycGWlHObb2PdnM6TG2aNXua0Pp13WAmECAwEAAaOCAo4wggKK MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUYzai0OywJPYD9l8eJuTH59VZc34wHwYD VR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEG CCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0 dHA6Ly9yMy5pLmxlbmNyLm9yZy8wXwYDVR0RBFgwVoIXa2EuYWYuY29udGVudHNx dWFyZS5uZXSCGGthMS5hZi5jb250ZW50c3F1YXJlLm5ldIIha2VwLWd1aW5uZXNz LmFmLmNvbnRlbnRzcXVhcmUubmV0MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysG AQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQu b3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAejKMVNi3LbYg6jjgUh7phBZw MhOFTTvSK8E6V6NS61IAAAGE9f+MVwAABAMARjBEAiAwQpsi4ZTLn1OJ2HB9A3BL w8H/NigzRRERPj9UH+mjmQIgX8j7hmB612BkasvNdWup6CgF2ptW/0bF/YQeK5+j b7sAdgDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp4Xd9bQa9bgAAAYT1/44qAAAE AwBHMEUCIDr/WWl19il0Q5Bz7iWPBauztEs+1rW1oE2GCHNCgdd+AiEAu6bQyqWr rjkljpvUkX3KZ4T1N9nYtBruNLkbFEBiyA4wDQYJKoZIhvcNAQELBQADggEBAIVb FOYrsTswDPjcZwhEsaoMTzUXd34sJwmuCp8NhlK6yOaTO0TZ28Tn4GIRKoVEToT6 5KpwBXq2qHDvyiKSERhp5z36+I/KDv3O9pYOcSh9/mUpFagA2mKCFlaZNgoZfy1K tai01i9I+kUG+4+KFFCiusZu23PFBsBf2RbJB/w35E0dRDR3lGhXMwt6rmf4hvXb cOSqPx4w4h8rnhGoB/NjdnazJQmDAVY/yy2LCGqluOMcB5EQP7sroO/eYVqBjnCU 5Jg9UMEJbw6FKgUaVn0v6pblsVBh9f7RClgJ2YN909ATDpLwcQzC5m9o6pSJjOiC mqJaqECpRlYtGYYsOgY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2JGIpn/lZFnDWLYM4Rr a+cjUa0C7SQNSPh7FfmQZ0K030g77K+Rpks5iMzAsjq8VdBLzFLnRBmfjDMedLGZ rOagqEgsISWjsy4YTD/4b8SWiRT3gxEzVg1o76UlIsw9viHLWcRTyIr9V4xehlcC sV1RmU7VJXimU+KkTCdYa9tth+Bv4dFR3GdOk+9HlBzy0jG/nlqGFDBy501RYYr4 44fhEc6zkpZUGfPHFN0ZHLoxGUfnEbGVInVuIpWz7vXR9ZhS6/MnTXGEAOHe8r/v xCD0ktQ9dgIE0if5pHGkxED3OiM5lgPiUvJwZaUc5tvY92czpMbZo1e5rQ+nXdYC YQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 279424791581109997968519538028566945268496 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-09 07:27:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-09 07:27:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kep-guinness.af.contentsquare.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23655023727185057359147007786006180326800505698467561300016377850500040219247498991161377360685955574549992346474568026905203784311016794319123195027324338695778656137747252241637993918875446595375583975956857048073615739768069228590799136358398122309527758665003431968811419159080450214540959201564716781421705314814662113868986482188945138146722422916963421645521922813147694566360727082800054031490772761903327773137254882591939881768433733742474660977292561119797405110554297770206900731694157176189870215153276050443286818265294679298402360561179968343765389533536932279507821324992321283487526166688003031171681 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6336a2d0ecb024f603f65f1e26e4c7e7d559737e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (88 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ka.af.contentsquare.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ka1.af.contentsquare.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kep-guinness.af.contentsquare.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000184f5ff8c570000040300463044022030429b22e194cb9f5389d8707d03704bc3c1ff3628334511113e3f541fe9a39902205fc8fb86607ad760646acbcd756ba9e82805da9b56ff46c5fd841e2b9fa36fbb007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e00000184f5ff8e2a000004030047304502203aff596975f62974439073ee258f05abb3b44b3ed6b5b5a04d8608734281d77e022100bba6d0caa5abae39258e9bd4917dca6784f537d9d8b41aee34b91b144062c80e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00855b14e62bb13b300cf8dc670844b1aa0c4f3517777e2c2709ae0a9f0d8652bac8e6933b44d9dbc4e7e062112a85444e84fae4aa70057ab6a870efca2292111869e73dfaf88fca0efdcef6960e71287dfe652915a800da6282165699360a197f2d4ab5a8b4d62f48fa4506fb8f8a1450a2bac66edb73c506c05fd916c907fc37e44d1d443477946857330b7aae67f886f5db70e4aa3f1e30e21f2b9e11a807f3637676b325098301563fcb2d8b086aa5b8e31c0791103fbb2ba0efde615a818e7094e4983d50c1096f0e852a051a567d2fea96e5b15061f5fed10a5809d9837dd3d0130e92f0710cc2e66f68ea94898ce8829aa25aa840a946562d19862c3a06